2 matches found
CVE-2020-24665
The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains an XML Entity Expansion injection vulnerability, which allows an authenticated remote users to trigger a denial of service DoS condition. Specifically, the vulnerability lies in the 'dashboardXml' parameter. Remediated in ...
CVE-2020-24665
The CVE-2020-24665 issue affects Hitachi Vantara Pentaho Dashboard Editor in the 7.x–8.x line. It is an XML Entity Expansion (XXE) injection via the dashboardXml parameter that enables an authenticated remote user to trigger a denial of service (DoS) . The root cause is the processing of external...