Lucene search
+L

4 matches found

Circl
Circl
added 2025/02/20 1:48 a.m.5 views

CVE-2024-37361

creationtimestamp| type| source ---|---|--- 2025-02-20 01:48:28+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114033695657281184 2025-02-20 02:16:30+00:00| seen| https://t.me/cvedetector/18488 2025-02-20 02:26:12+00:00| seen|...

9.9CVSS7.8AI score0.00499EPSS
Exploits0References11
CVE
CVE
added 2025/02/19 11:25 p.m.46 views

CVE-2024-37361

CVE-2024-37361 affects Hitachi Vantara Pentaho Business Analytics Server. The flaw is deserialization of untrusted JSON data caused by not constraining the parser to approved classes/methods, enabling potentially dangerous gadget chains during deserialization. Affected versions include before 10....

9.9CVSS9.5AI score0.00499EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/19 11:25 p.m.3 views

CVE-2024-37361 Hitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted Data

The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid. CWE-502 Hitachi Vantara Pentaho Business Analytics Server versions before 10.2.0.0 and 9.3.0.9, including 8.3.x, deserialize untrusted JSON data without constraining the parser to...

9.9CVSS9.6AI score0.00499EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/19 11:25 p.m.14 views

CVE-2024-37361 Hitachi Vantara Pentaho Business Analytics Server - Deserialization of Untrusted Data

The application deserializes untrusted data without sufficiently verifying that the resulting data will be valid. CWE-502 Hitachi Vantara Pentaho Business Analytics Server versions before 10.2.0.0 and 9.3.0.9, including 8.3.x, deserialize untrusted JSON data without constraining the parser to...

9.9CVSS0.00499EPSS
Exploits0References1
Rows per page
Query Builder