Lucene search
+L

4 matches found

nvd
nvd
added 2025/04/16 11:15 p.m.35 views

CVE-2025-0758

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

6.1CVSS0.00135EPSS
Exploits0References1
circl
circl
added 2025/04/16 10:57 p.m.17 views

CVE-2025-0758

creationtimestamp| type| source ---|---|--- 2025-04-16 22:57:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12167 2025-04-17 02:06:30+00:00| seen| https://t.me/cvedetector/23195 2025-04-17 02:48:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmy3rxwhzt2d...

6.1CVSS4.8AI score0.00135EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/04/16 10:12 p.m.6 views

CVE-2025-0758 Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

6.1CVSS6.2AI score0.00135EPSS
Exploits0References1
cve
cve
added 2025/04/16 10:12 p.m.70 views

CVE-2025-0758

CVE-2025-0758 affects Hitachi Vantara Pentaho Business Analytics Server. The root cause is that Karaf JMX beans are enabled and accessible by default, allowing a local-privilege user to leverage exposed functionality via these beans. Impact described across sources: read/modify a security-critica...

6.1CVSS6.2AI score0.00135EPSS
Exploits0References1
Rows per page
Query Builder