THREATOPS
THREAT OPSCVEs › CVE-2022-43939

CVE-2022-43939 — Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability

CISA KEVExploited: confirmedHitachi Vantara

Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.

Vulnerability details