CVE-2021-45446
Pentaho Business Analytics Server - Exposure of Information Through Directory Listing
A vulnerability in
Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and
8.3.0.25 does not cascade the hidden property to the children of the Home folder. This directory listing provides an attacker with the complete index of all the resources located
inside the directory.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Produtos afetados
Hitachi Vantara · Pentaho Business Analytics ServerQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →