tibco

229 tracked vulnerabilities.

CVE-2019-8987 MEDIUM
TIBCO Data Science for AWS and Spotfire Data Science <= 6.4.0 - Authenticated Stored Cross-Site Scripting
Mar 26, 2019
CVSS 5.4
EPSS 0.00
CVE-2019-8986 HIGH
TIBCO JasperReports Server <6.3.4-6.4.3 - Info Disclosure
Mar 07, 2019
CVSS 7.7
EPSS 0.00
CVE-2018-18816 HIGH
TIBCO JasperReports Server <= 6.3.4; 6.4.0-6.4.3; 7.1.0 - Stored Cross-Site Scripting in Repository Component
Mar 07, 2019
CVSS 8.0
EPSS 0.00
CVE-2018-18815 CRITICAL
TIBCO JasperReports Server < 6.4.3 and 7.1.0 - Unauthenticated Authorization Bypass via REST API
Mar 07, 2019
CVSS 10.0
EPSS 0.00
CVE-2018-18809 MEDIUM KEVNUCLEI
TIBCO JasperReports Library <= 6.4.21 and 6.7.0 - Path Traversal
Mar 07, 2019
CVSS 6.5
EPSS 0.94
CVE-2018-18808 HIGH
TIBCO JasperReports Server <= 6.3.4; 6.4.0-6.4.3; 7.1.0 - Privilege Escalation via Domain Management Race Condition
Mar 07, 2019
CVSS 8.8
EPSS 0.00
CVE-2018-12409 MEDIUM
TIBCO Silver Fabric <= 5.8.1 - Reflected Cross-Site Scripting in SOAP Admin API
Feb 13, 2019
CVSS 6.1
EPSS 0.00
CVE-2018-18814 HIGH
TIBCO Spotfire Analytics Platform for AWS < 10.0.0 and Spotfire Server <= 7.10.1 - Improper Authentication
Jan 16, 2019
CVSS 8.8
EPSS 0.02
CVE-2018-18813 HIGH
TIBCO Spotfire Analytics Platform for AWS < 10.0.0 and Spotfire Server <= 7.10.1 - XSS
Jan 16, 2019
CVSS 8.8
EPSS 0.00
CVE-2018-18812 MEDIUM
TIBCO Spotfire Analytics Platform for AWS < 10.0.0 and Spotfire Server <= 7.10.1 - Unauthorized File Modification
Jan 16, 2019
CVSS 6.5
EPSS 0.00
CVE-2018-18810 MEDIUM
TIBCO Managed File Transfer - Privilege Escalation
Dec 11, 2018
CVSS 6.8
EPSS 0.00
CVE-2018-18807 HIGH
TIBCO Statistica Server <= 13.4.0 - Authenticated Cross-Site Scripting
Nov 26, 2018
CVSS 7.6
EPSS 0.00
CVE-2018-12416 HIGH
TIBCO DataSynapse GridServer Manager <6.3.0 - CSRF
Nov 13, 2018
CVSS 7.1
EPSS 0.00
CVE-2018-12415 HIGH
TIBCO Enterprise Message Service <8.4.0 - CSRF
Nov 06, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-12414 HIGH
TIBCO Rendezvous <= 8.4.5 - Cross-Site Request Forgery
Nov 06, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-12413 HIGH
TIBCO Messaging - Apache Kafka Distribution - Schema Repository - CSRF
Nov 06, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-12412 HIGH
TIBCO FTL <= 5.4.0 - Cross-Site Request Forgery in Realm Server
Nov 06, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-12411 HIGH
TIBCO ActiveSpaces 3.0.0-3.5.0 - Cross-Site Request Forgery
Nov 06, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-12410 CRITICAL
TIBCO Spotfire Statistics Services <7.11.0 - RCE
Oct 10, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-12408 HIGH
TIBCO ActiveMatrix BusinessWorks < - SSRF
Aug 08, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-5437 MEDIUM
TIBCO Spotfire <7.10.1 - Info Disclosure
Jun 27, 2018
CVSS 6.8
EPSS 0.00
CVE-2018-5436 MEDIUM
TIBCO Spotfire <7.12.0, <7.8.1-7.12.0 - Info Disclosure
Jun 27, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-5435 CRITICAL
TIBCO Spotfire Analyst <= 7.8.0 - Remote Code Execution
Jun 27, 2018
CVSS 9.6
EPSS 0.01
CVE-2018-5428 HIGH
TIBCO Data Virtualization <7.0.6 - Command Injection
Jun 20, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-5434 MEDIUM
TIBCO Runtime Agent <= 5.10.0 and TIBCO Runtime Agent for z/Linux <= 5.9.1 - XML External Entity Injection
Jun 13, 2018
CVSS 5.8
EPSS 0.00
Products
spotfire_server 28 jasperreports_server 22 spotfire_analytics_platform_for_aws 20 rendezvous 16 spotfire_analyst 12 enterprise_message_service 11 jaspersoft 10 jaspersoft_reporting_and_analytics 10 managed_file_transfer_command_center 10 managed_file_transfer_internet_server 10 spotfire_desktop 10 ebx 9 ebx_add-ons 9 ftl 9 runtime_agent 9 activematrix_bpm 8 activematrix_service_bus 8 activematrix_service_grid 8 spotfire_deployment_kit 8 silver_fabric_enabler 7 spotfire_analytics_platform 7 spotfire_statistics_services 7 administrator 6 hawk 6 spotfire_desktop_language_packs 6 activematrix_businessworks_service_engine 5 eftl 5 iprocess_engine 5 jasperreports_library 5 rtworks 5
Quick Filters
Critical CVEs With Exploits In CISA KEV