Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-11528

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00135EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/25 10:49 p.m.22 views

CVE-2025-0758

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed wit...

6.1CVSS6.7AI score0.00135EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 11:15 p.m.35 views

CVE-2025-0758

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

6.1CVSS0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/16 10:12 p.m.29 views

CVE-2025-0758 Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

6.1CVSS0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/16 12:0 a.m.9 views

PT-2025-16912 · Hitachi Vantara +1 · Hitachi Vantara Pentaho Business Analytics Server +1

Name of the Vulnerable Software and Affected Versions: Hitachi Vantara Pentaho Business Analytics Server versions prior to 10.2.0.2 Hitachi Vantara Pentaho Business Analytics Server versions 9.3.x Hitachi Vantara Pentaho Business Analytics Server versions 8.3.x Description: The product specifies...

6.1CVSS6.2AI score0.00135EPSS
Exploits0References5
OSV
OSV
added 2022/02/10 11:4 p.m.5 views

GHSA-9JG9-6WM2-X7P5 Server-Side Request Forgery in Karaf

In Karaf, JMX authentication takes place using JAAS and authorization takes place using ACL files. By default, only an "admin" can actually invoke on an MBean. However there is a vulnerability there for someone who is not an admin, but has a "viewer" role. In the 'etc/jmx.acl.cfg', such as role c...

6.3CVSS5.9AI score0.01876EPSS
Exploits0References3
Rows per page
Query Builder