Hitachi Vantara Pentaho Business Analytics Server versions before 9.3.0.0, 9.2.0.4 and 8.3.0.27 does not correctly perform an authorization check in the dashboard editor plugin API.

Related CVEs

CVE-2022-43770

Key Information

GHSA ID

GHSA-j4q7-rgmr-c632

Published

July 6, 2023 7:24 PM

Last Modified

April 4, 2024 5:35 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 14, 2025 6:31 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.