CVE-2022-43769

Confirmed PUBLISHED

Hitachi Vantara Pentaho Business Analytics Server - Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)

Hitachi Vantara · Pentaho Business Analytics Server
Exploited in the wild PoC available

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
8.8 High

At a Glance

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x allow certain web services to set property values which contain Spring templates that are interpreted downstream.

java nessus_scanner nuclei_scanner metasploit cisa
CVE Published
Apr 03, 2023
Exploitation Reported
Mar 03, 2025
CVSS
8.8 High
EPSS
Remote Low complexity No user interaction

Affected Versions

Vendor Product Version Status
Hitachi Vantara
Pentaho Business Analytics Server

1.0 to < 9.3.0.2

Affected
Hitachi Vantara
Pentaho Business Analytics Server

9.4.0.0 to < 9.4.0.1

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.