Hitachi - Vantara Pentaho CVE

Filtered by vendor Hitachi Subscribe

Filtered by product Vantara Pentaho

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-34684	1 Hitachi	1 Vantara Pentaho	2021-11-09	7.5 HIGH	9.8 CRITICAL
Hitachi Vantara Pentaho Business Analytics through 9.1 allows an unauthenticated user to execute arbitrary SQL queries on any Pentaho data source and thus retrieve data from the related databases, as demonstrated by an api/repos/dashboards/editor URI.

Vulnerabilities (CVE)