Lucene search
K

10 matches found

Cvelist
Cvelist
added 2026/05/27 2:54 a.m.40 views

CVE-2026-2253 Hitachi Vantara Pentaho Data Integration & Analytics - Improper Restriction of XML External Entity Reference

Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.7 and 11.0.0.0, including 9.3.x and 8.3.x, does not prevent certain XML parsers from resolving external entities...

7.7CVSS0.00201EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/06 12:0 a.m.6 views

PT-2025-7446 · Hitachi Vantara · Pentaho Data Integration & Analytics

Name of the Vulnerable Software and Affected Versions: Hitachi Vantara Pentaho Data Integration & Analytics versions prior to 10.2.0.0 and 9.3.0.9, including 8.3.x Description: The product receives input from an upstream component but does not restrict or incorrectly restricts the input before it...

9CVSS8.3AI score0.00658EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/05/24 12:0 a.m.7 views

Hitachi Vantara Pentaho Business Analytics Server 代码问题漏洞

Hitachi Vantara Pentaho Business Analytics Server is a modern data blending, integration, and business analytics platform from Hitachi, Japan. A security vulnerability exists in Hitachi Vantara Pentaho Business Analytics Server version 8.3.x, version 9.4.x up to and including version 9.4.0.1, and...

8.8CVSS7.9AI score0.00628EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/03 12:0 a.m.7 views

PT-2023-2238

Name of the Vulnerable Software and Affected Versions Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2, including 8.3.x Description The issue is related to the use of non-canonical URL paths for authorization solutions, which can be circumvented. This can allo...

9.8CVSS6.8AI score0.92266EPSS
Exploits6References22
CNNVD
CNNVD
added 2022/11/02 12:0 a.m.4 views

Hitachi Pentaho Business Analytics 路径遍历漏洞

Hitachi Pentaho Business Analytics is a business analytics platform from Hitachi, Japan, Inc. for securely accessing, integrating, manipulating, visualizing and analyzing big data assets. A security vulnerability exists in Hitachi Pentaho Business Analytics version 9.2.0.2 prior to version 9.2 an...

7.1CVSS6.5AI score0.00551EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/07/28 12:0 a.m.3 views

Veritas NetBackup 安全漏洞

Veritas NetBackup is a storage service from Veritas, Inc. that is used to provide backup and recovery capabilities for enterprise environments. The software supports the detection of ransomware and backup protection of environmental data such as metadata and virtual environments. A security...

7.8CVSS7.4AI score0.00196EPSS
Exploits0References2
OSV
OSV
added 2021/03/30 12:15 a.m.6 views

CVE-2021-25145

A remote unauthorized disclosure of information vulnerability was discovered in some Aruba Instant Access Point IAP products in versions: Aruba Instant 6.4.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.1...

6.5CVSS5.8AI score0.00407EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/05/08 12:0 a.m.4 views

PT-2019-12341 · Pulse Secure · Pulse Connect Secure

Name of the Vulnerable Software and Affected Versions: Pulse Secure Pulse Connect Secure PCS versions 8.3.x through 8.3R7.0 Pulse Secure Pulse Connect Secure PCS versions 9.0.x through 9.0R2 Description: An XSS issue has been found on the Application Launcher page. Recommendations: For Pulse Secu...

6.1CVSS5.7AI score0.04055EPSS
Exploits1References12
OSV
OSV
added 2017/08/08 3:29 p.m.5 views

CVE-2017-10131

Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite subcomponent: Web Access. Supported versions that are affected are 8.3, 8.4, 15.1, 15.2, 16.1 and 16.2. Easily exploitable vulnerability allows low privileged attacker with netwo...

6.5CVSS5.8AI score0.01026EPSS
Exploits0References3
CNVD
CNVD
added 2016/06/17 12:0 a.m.2 views

Cisco Prime Network Registrar Information Disclosure Vulnerability

Cisco Prime Network Registrar CPNR is a network registrar product from the U.S. company Cisco Cisco. The product provides services such as Dynamic Host Configuration Protocol DHCP, Domain Name System DNS and IP Address Management IPAM. A security vulnerability exists in the System Configuration...

7.5CVSS6.4AI score0.01796EPSS
Exploits0References1
Rows per page
Query Builder