CVE-2023-5617

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 28, 2024
Updated: Feb 29, 2024
CWE ID 550

Summary

CVE-2023-5617 is a vulnerability affecting Hitachi Vantara Pentaho Data Integration & Analytics versions prior to 10.1.0.0 and 9.3.0.6, including 9.5.x and 8.3.x. When a server error occurs, these versions inadvertently disclose the Tomcat version number, potentially aiding attackers in exploiting known vulnerabilities in the Tomcat server. This information leak could lead to unauthorized system access and data breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share