tibco

229 tracked vulnerabilities.

CVE-2021-28820 HIGH
TIBCO FTL < 6.6.0 - Uncontrolled Search Path Element
Mar 23, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28819 HIGH
TIBCO FTL < 6.6.0 - Privilege Escalation via Unrestricted Installation Directory
Mar 23, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28818 HIGH
TIBCO Rendezvous - Local Privilege Escalation
Mar 23, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-28817 HIGH
TIBCO Rendezvous - Privilege Escalation
Mar 23, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-23274 CRITICAL
TIBCO API Exchange Gateway < - SSRF
Mar 23, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-23273 HIGH
TIBCO Spotfire - Stored Cross-Site Scripting
Mar 09, 2021
CVSS 8.0
EPSS 0.00
CVE-2021-23271 HIGH
TIBCO EBX < 5.9.12 - Stored Cross-Site Scripting
Feb 02, 2021
CVSS 8.0
EPSS 0.00
CVE-2021-23272 MEDIUM
TIBCO BPM Enterprise < 4.3.0 - Cross-Site Scripting in Application Development Clients
Jan 26, 2021
CVSS 4.6
EPSS 0.00
CVE-2020-27148 HIGH
TIBCO EBX Add-ons < 4.4.2 - XML External Entity Injection
Jan 12, 2021
CVSS 7.1
EPSS 0.01
CVE-2020-27147 MEDIUM
TIBCO PartnerExpress <6.2.0 - Info Disclosure
Dec 15, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-27146 MEDIUM
TIBCO iProcess Workspace (Browser) <11.6.0 - CSRF
Nov 10, 2020
CVSS 5.0
EPSS 0.00
CVE-2020-9417 HIGH
TIBCO Foresight Transaction Insight Reporting Component <= 5.1.0 - Authenticated SQL Injection
Oct 20, 2020
CVSS 7.6
EPSS 0.00
CVE-2020-9416 HIGH
TIBCO Spotfire Analyst 10.7.0-10.10.0 - Stored Cross-Site Scripting
Sep 15, 2020
CVSS 8.2
EPSS 0.00
CVE-2020-9415 MEDIUM
TIBCO Data Virtualization <7.0.8 - Privilege Escalation
Aug 18, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-9414 HIGH
TIBCO Managed File Transfer < 8.2.1 Authenticated Session Fixation
Jun 30, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-9413 MEDIUM
TIBCO Managed File Transfer < 8.2.1 - Authenticated RCE via Crafted URL
Jun 30, 2020
CVSS 6.3
EPSS 0.01
CVE-2020-9412 CRITICAL
TIBCO MFT Server for IBM i <8.0.0 - RCE
Jun 09, 2020
CVSS 10.0
EPSS 0.01
CVE-2020-9411 CRITICAL
TIBCO Managed File Transfer Platform Server for IBM i - Unauthorize...
Jun 09, 2020
CVSS 10.0
EPSS 0.00
CVE-2020-9410 HIGH
TIBCO JasperReports Library and Server < 7.1.1 - Stored Cross-Site Scripting via Fusion Charts Data Source
May 20, 2020
CVSS 7.3
EPSS 0.01
CVE-2020-9409 CRITICAL
TIBCO JasperReports Server < 7.1.1 - Unauthenticated Privilege Escalation to Superuser
May 20, 2020
CVSS 9.8
EPSS 0.03
CVE-2020-9408 HIGH
Tibco Spotfire Analytics Platform For... - Incorrect Default Permissions
Mar 11, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-17339 MEDIUM
TIBCO Silver Fabric < 6.0.0 - Authenticated Cross-Site Scripting via VirtualRouter URL
Aug 11, 2020
CVSS 6.8
EPSS 0.00
CVE-2019-17333 MEDIUM
TIBCO EBX < 5.8.1 - Authenticated Stored Cross-Site Scripting
Feb 19, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-17338 MEDIUM
TIBCO Patterns - Search < 5.4.0 - Authenticated Stored Cross-Site Scripting
Jan 28, 2020
CVSS 5.4
EPSS 0.00
CVE-2019-17337 MEDIUM
TIBCO Spotfire Server < 7.11.7 and 7.12.0-10.6.0 - Reflected Cross-Site Scripting
Dec 17, 2019
CVSS 5.4
EPSS 0.00
Products
spotfire_server 28 jasperreports_server 22 spotfire_analytics_platform_for_aws 20 rendezvous 16 spotfire_analyst 12 enterprise_message_service 11 jaspersoft 10 jaspersoft_reporting_and_analytics 10 managed_file_transfer_command_center 10 managed_file_transfer_internet_server 10 spotfire_desktop 10 ebx 9 ebx_add-ons 9 ftl 9 runtime_agent 9 activematrix_bpm 8 activematrix_service_bus 8 activematrix_service_grid 8 spotfire_deployment_kit 8 silver_fabric_enabler 7 spotfire_analytics_platform 7 spotfire_statistics_services 7 administrator 6 hawk 6 spotfire_desktop_language_packs 6 activematrix_businessworks_service_engine 5 eftl 5 iprocess_engine 5 jasperreports_library 5 rtworks 5
Quick Filters
Critical CVEs With Exploits In CISA KEV