Unrated severityNVD Advisory· Published Nov 8, 2021· Updated Aug 3, 2024
CVE-2021-31599
CVE-2021-31599
Description
An issue was discovered in Hitachi Vantara Pentaho through 9.1 and Pentaho Business Intelligence Server through 7.x. A reports (.prpt) file allows the inclusion of BeanShell scripts to ease the production of complex reports. An authenticated user can run arbitrary code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Hitachi Vantara Pentaho/Pentaho Business Intelligence Serverdescription
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/164772/Pentaho-Business-Analytics-Pentaho-Business-Server-9.1-Remote-Code-Execution.htmlmitrex_refsource_MISC
- www.hitachi.com/hirt/security/index.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.