CVE-2022-43769CISA KEV: Actively Exploited

Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability

Published Mar 3, 2025·Updated Mar 3, 2025

Description

Hitachi Vantara Pentaho BA Server contains a special element injection vulnerability that allows an attacker to inject Spring templates into properties files, allowing for arbitrary command execution.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free