{"uuid": "7592719a-18b7-4bf3-a55e-d38b527991f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-0758", "type": "seen", "source": "https://t.me/cvedetector/23195", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-0758 - Hitachi Vantara Pentaho Business Analytics Server JMX Bean Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2025-0758 \nPublished : April 16, 2025, 11:15 p.m. | 39\u00a0minutes ago \nDescription : Overview\u00a0  \n  \n  \n  \nThe product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. (CWE-732)\u00a0  \n  \n  \n  \nDescription\u00a0  \n  \n  \n  \nHitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed with Karaf JMX beans enabled and accessible by default.\u00a0  \n  \n  \n  \nImpact\u00a0  \n  \n  \n  \nWhen the vulnerability is leveraged, a user with local execution privileges can access functionality exposed by Karaf beans contained in the product. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-17T02:06:30.000000Z"}