Plaintext Password Storage Vulnerability in Hitachi Vantara Pentaho Business Analytics Server

CVE-2023-2358 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.5.0.0 and 9.3.0.4, including 8.3.x.x, saves passwords of the Hadoop Copy Files step in plaintext. 

Learn more about our Cis Benchmark Audit For Server Software.