Security Advisory

CVE-2020-24665

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-29 18:41:03

Last updated 2024-08-04 15:19:09

Assigner mitre

State PUBLISHED

Description

The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains an XML Entity Expansion injection vulnerability, which allows an authenticated remote users to trigger a denial of service (DoS) condition. Specifically, the vulnerability lies in the dashboardXml parameter. Remediated in >= 7.1.0.25, >= 8.2.0.6, >= 8.3.0.0 GA

← Browse all CVEs View on cve.org ↗