3 matches found
CVE-2022-4815
Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.3, including 8.3.x deserialize untrusted JSON data without constraining the parser to approved classes and methods...
CVE-2022-4815 Hitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted Data
Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.3, including 8.3.x deserialize untrusted JSON data without constraining the parser to approved classes and methods...
CVE-2022-4815
Hitachi Vantara Pentaho Business Analytics Server is affected by CVE-2022-4815 due to deserialization of untrusted JSON data without constraining the parser to approved classes/methods. Affected versions include Pentaho BA Server prior to 9.4.0.1, prior to 9.3.0.3, and 8.3.x. The issue originates...