Unrated severityNVD Advisory· Published Jan 29, 2021· Updated Aug 4, 2024
CVE-2020-24669
CVE-2020-24669
Description
The New Analysis Report in Hitachi Vantara Pentaho through 7.x - 8.x contains a DOM-based Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'Analysis Report Description' field in 'About this Report' section. Remediated in >= 8.3.0.9, >= 9.0.0.1, and >= 9.1.0.0 GA.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Hitachi Vantara/Pentahodescription
Patches
Vulnerability mechanics
References
2- www.hitachi.com/hirt/hitachi-sec/2020/601.htmlmitrex_refsource_MISC
- www.accenture.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.