CVE-2022-43940 Information

Description

Hitachi Vantara Pentaho Business Analytics Server versions before 9.4.0.1 and 9.3.0.2 including 8.3.x do not correctly perform an authorization check in the data source management service.

Reference

https://support.pentaho.com/hc/en-us/articles/14456609400973–Resolved-Pentaho-BA-Server-Incorrect-Authorization-Versions-before-9-4-0-1-and-9-3-0-2-including-8-3-x-Impacted-CVE-2022-43940-