CVE-2022-43939
Hitachi Vantara Pentaho Business Analytics Server - Use of Non-Canonical URL Paths for Authorization Decisions
In short
Pentaho Business Analytics Server uses improperly formatted URLs to check permissions, allowing attackers to bypass security restrictions by using alternative URL patterns. This can give unauthorized access to sensitive features or data.
Technical detail
The application enforces authorization checks based on non-canonical URL paths, which can be circumvented by submitting requests with alternative URL encodings or path traversal patterns. An attacker with network access can craft malicious requests to bypass access controls and reach restricted resources or functionalities, affecting versions before 9.4.0.1 and 9.3.0.2.
Summary generated and translated by AI from the official description.
Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2, including 8.3.x contain security restrictions using non-canonical URLs which can be circumvented.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Affected products
Hitachi Vantara · Pentaho Business Analytics Serverpublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/172296/Pentaho-Business-Server-Authentication-Bypass-SSTI-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/51350unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/172296/Pentaho-Business-Server-Authentication-Bypass-SSTI-Code-Execution.htmlhttps://support.pentaho.com/hc/en-us/articles/14455394120333--Resolved-Pentaho-BA-Server-Use-of-Non-Canonical-URL-Paths-for-Authorization-Decisions-Versions-before-9-4-0-1-and-9-3-0-2-including-8-3-x-Impacted-CVE-2022-43939-https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2022-43939