cvedb.io
CVE-2021-45446
MEDIUM · CVSS 5
EPSS exploitation probability: 0%
Published 2022-11-02T15:15:09.683 · Last modified 2026-06-17T04:13:23.110

Summary

A vulnerability in Hitachi Vantara Pentaho Business Analytics Server versions before 9.2.0.2 and 8.3.0.25 does not cascade the hidden property to the children of the Home folder.  This directory listing provides an attacker with the complete index of all the resources located inside the directory.

Affected products

hitachi — vantara_pentaho

Does this affect you?

Add your gear to cvedb and we'll alert you only when hitachi ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.