CVE-2021-45446
Pentaho Business Analytics Server - Exposure of Information Through Directory Listing
A vulnerability in
Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and
8.3.0.25 does not cascade the hidden property to the children of the Home folder. This directory listing provides an attacker with the complete index of all the resources located
inside the directory.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Productos afectados
Hitachi Vantara · Pentaho Business Analytics Server¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →