Exposures › CVE-2022-43939
CVE-2022-43939
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-03-03
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.
Players implicated
Description
Hitachi Vantara Pentaho BA Server contains a use of non-canonical URL paths for authorization decisions vulnerability that enables an attacker to bypass authorization.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.