Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.1.0.0 and 9.3.0.6, including 9.5.x and 8.3.x, display the version of Tomcat when a server error is encountered.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NHitachi Vantara Pentaho Data Integration And Analytics
APPHitachi< 9.3.0.69.4.0.0 – 10.1.0.0 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2025-11159CRITICAL9.1PL ✓ten sam produkt
Hitachi Vantara Pentaho – RCE przez podatny sterownik JDBC H2
CVE-2025-11158CRITICAL9.1PL ✓ten sam produkt
RCE przez brak restrykcji skryptów Groovy w raportach PRPT — Pentaho
CVE-2026-2253HIGH7.7ten sam produkt
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.7 and 11.0.0.0, including 9.3.x an...
CVE-2026-2254MEDIUM6.3ten sam produkt
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.6 and 11.0.0.0, including 9.3.x an...
CVE-2026-2255MEDIUM4.3ten sam produkt
Hitachi Vantara Pentaho Data Integration & Analytics versions before 10.2.0.6 and 11.0.0.0, including 9.3.x an...