CVE-2014-2545
TIBCO Slingshot < 1.9.0 - Exposure of Sensitive Information via Crafted HTTP Request
Title source: llmDescription
TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive information via a crafted HTTP request.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.tibco.com/multimedia/mft_advisory_20140429_tcm8-21013.txt
Vendor Advisory x_refsource_confirm
http://www.tibco.com/mk/advisory.jsp
Scores
EPSS
0.0023
EPSS Percentile
45.7%
Details
CWE
CWE-200
Status
published
Products (17)
tibco/managed_file_transfer_command_center
6.7
tibco/managed_file_transfer_command_center
7.0
tibco/managed_file_transfer_command_center
7.0.1
tibco/managed_file_transfer_command_center
7.1.0
tibco/managed_file_transfer_command_center
7.2.0
tibco/managed_file_transfer_command_center
< 7.2.1
tibco/managed_file_transfer_internet_server
6.7
tibco/managed_file_transfer_internet_server
7.0
tibco/managed_file_transfer_internet_server
7.0.1
tibco/managed_file_transfer_internet_server
7.1.0
... and 7 more
Published
Apr 30, 2014
Tracked Since
Feb 18, 2026