CVE Published: 24/05/2023 |
CVE Updated: 02/08/2024 |
CVE Year: 2023 Source: HITVAN |
Vendor: Hitachi Vantara |
Product: Pentaho Business Analytics Server Status : PUBLISHED
CVE-2023-1158 Description
Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.3, including 8.3.x expose dashboard prompts to users who are not part of the authorization list.
Metrics
CVSS Version: 3.1 |
Base Score: 4.3 MEDIUM Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N