{
    "dataType": "CVE_RECORD",
    "dataVersion": "5.1",
    "cveMetadata": {
        "cveId": "CVE-2022-43769",
        "assignerOrgId": "dce6e192-ff49-4263-9134-f0beccb9bc13",
        "state": "PUBLISHED",
        "assignerShortName": "HITVAN",
        "dateReserved": "2022-10-26T12:55:14.326Z",
        "datePublished": "2023-04-03T17:47:45.737Z",
        "dateUpdated": "2024-08-03T13:40:06.548Z"
    },
    "containers": {
        "cna": {
            "affected": [
                {
                    "defaultStatus": "unaffected",
                    "product": "Pentaho Business Analytics Server",
                    "vendor": "Hitachi Vantara",
                    "versions": [
                        {
                            "lessThan": "9.3.0.2",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "maven"
                        },
                        {
                            "lessThan": "9.4.0.1",
                            "status": "affected",
                            "version": "9.4.0.0",
                            "versionType": "maven"
                        }
                    ]
                }
            ],
            "credits": [
                {
                    "lang": "en",
                    "type": "finder",
                    "user": "00000000-0000-4000-9000-000000000000",
                    "value": "Harry Withington, Aura Information Security"
                }
            ],
            "descriptions": [
                {
                    "lang": "en",
                    "supportingMedia": [
                        {
                            "base64": false,
                            "type": "text/html",
                            "value": "\n\n<span style=\"background-color: rgb(255, 255, 255);\">Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x allow certain web services to set property values which contain Spring templates that are interpreted downstream.</span><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;</span>\n\n"
                        }
                    ],
                    "value": "\nHitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x allow certain web services to set property values which contain Spring templates that are interpreted downstream. \n\n"
                }
            ],
            "impacts": [
                {
                    "capecId": "CAPEC-35",
                    "descriptions": [
                        {
                            "lang": "en",
                            "value": "CAPEC-35 Leverage Executable Code in Non-Executable Files"
                        }
                    ]
                }
            ],
            "metrics": [
                {
                    "cvssV3_1": {
                        "attackComplexity": "LOW",
                        "attackVector": "NETWORK",
                        "availabilityImpact": "HIGH",
                        "baseScore": 8.8,
                        "baseSeverity": "HIGH",
                        "confidentialityImpact": "HIGH",
                        "integrityImpact": "HIGH",
                        "privilegesRequired": "LOW",
                        "scope": "UNCHANGED",
                        "userInteraction": "NONE",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                        "version": "3.1"
                    },
                    "format": "CVSS",
                    "scenarios": [
                        {
                            "lang": "en",
                            "value": "GENERAL"
                        }
                    ]
                }
            ],
            "problemTypes": [
                {
                    "descriptions": [
                        {
                            "cweId": "CWE-74",
                            "description": "CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')",
                            "lang": "en",
                            "type": "CWE"
                        }
                    ]
                }
            ],
            "providerMetadata": {
                "orgId": "dce6e192-ff49-4263-9134-f0beccb9bc13",
                "shortName": "HITVAN",
                "dateUpdated": "2023-04-03T17:48:19.514Z"
            },
            "references": [
                {
                    "url": "https://support.pentaho.com/hc/en-us/articles/14455561548301--Resolved-Pentaho-BA-Server-Failure-to-Sanitize-Special-Elements-into-a-Different-Plane-Special-Element-Injection-Versions-before-9-4-0-1-and-9-3-0-2-including-8-3-x-Impacted-CVE-2022-43769-"
                },
                {
                    "url": "http://packetstormsecurity.com/files/172296/Pentaho-Business-Server-Authentication-Bypass-SSTI-Code-Execution.html"
                }
            ],
            "source": {
                "discovery": "EXTERNAL"
            },
            "title": "Hitachi Vantara Pentaho Business Analytics Server - Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) ",
            "x_generator": {
                "engine": "Vulnogram 0.1.0-dev"
            }
        },
        "adp": [
            {
                "providerMetadata": {
                    "orgId": "af854a3a-2127-422b-91ae-364da2661108",
                    "shortName": "CVE",
                    "dateUpdated": "2024-08-03T13:40:06.548Z"
                },
                "title": "CVE Program Container",
                "references": [
                    {
                        "url": "https://support.pentaho.com/hc/en-us/articles/14455561548301--Resolved-Pentaho-BA-Server-Failure-to-Sanitize-Special-Elements-into-a-Different-Plane-Special-Element-Injection-Versions-before-9-4-0-1-and-9-3-0-2-including-8-3-x-Impacted-CVE-2022-43769-",
                        "tags": [
                            "x_transferred"
                        ]
                    },
                    {
                        "url": "http://packetstormsecurity.com/files/172296/Pentaho-Business-Server-Authentication-Bypass-SSTI-Code-Execution.html",
                        "tags": [
                            "x_transferred"
                        ]
                    }
                ]
            }
        ]
    }
}