CVE-2014-2075

TIBCO Enterprise Administrator <1.0.0 - Command Injection

Title source: llm

Description

TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary commands via unspecified vectors.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

http://www.tibco.com/mk/advisory.jsp

Vendor Advisory x_refsource_confirm

http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt

Scores

EPSS 0.0157

EPSS Percentile 81.7%

Details

CWE

CWE-287

Status published

Products (2)

tibco/enterprise_administrator 1.0.0

tibco/enterprise_administrator_sdk 1.0.0

Published Feb 27, 2014

Tracked Since Feb 18, 2026