Vulnerabilities > Hitachi > Pentaho Data Integration AND Analytics > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-12 CVE-2023-3517 Unspecified vulnerability in Hitachi Pentaho Data Integration and Analytics 1.0/9.4.0.0
Hitachi Vantara Pentaho Data Integration & Analytics versions before 9.5.0.1 and 9.3.0.5, including 8.3.x does not restrict JNDI identifiers during the creation of XActions, allowing control of system level data sources.
network
low complexity
hitachi
8.8