Exposures › CVE-2022-43939

CVE-2022-43939

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-03-03
Reference
⌖ exploited in the wild shame 50/100 exploited-in-wild

Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.

Players implicated

Description

Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.