Vulnerability Description
Pentaho Business Analytics Server versions before 9.2.0.2 and 8.3.0.25 using the Pentaho Analyzer plugin exposes a service endpoint for templates which allows a user-supplied path to access resources that are out of bounds. The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. By using special elements such as ".." and "/" separators, attackers can escape outside of the restricted location to access files or directories that are elsewhere on the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hitachi | Vantara Pentaho | >= 8.3.0.0, < 8.3.0.25 |
Related Weaknesses (CWE)
References
- https://support.pentaho.com/hc/en-us/articles/6744743458701Vendor Advisory
- https://support.pentaho.com/hc/en-us/articles/6744743458701Vendor Advisory
FAQ
What is CVE-2021-45448?
CVE-2021-45448 is a vulnerability with a CVSS score of 7.1 (HIGH). Pentaho Business Analytics Server versions before 9.2.0.2 and 8.3.0.25 using the Pentaho Analyzer plugin exposes a service endpoint for templates which allows a user-supplied path to access resourc...
How severe is CVE-2021-45448?
CVE-2021-45448 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-45448?
Check the references section above for vendor advisories and patch information. Affected products include: Hitachi Vantara Pentaho.