Description
Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2, Spotfire Deployment Kit 6.0.x before 6.0.2 and 6.5.x before 6.5.2, and Silver Fabric Enabler for Spotfire Web Player before 1.6.1 allows remote authenticated users to obtain sensitive information via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.tibco.com/assets/blta5b5c969aff51474/2014-009-spotfire-advisory.txt
Vendor Advisory x_refsource_confirm
http://www.tibco.com/mk/advisory.jsp
Scores
EPSS
0.0014
EPSS Percentile
33.8%
Details
CWE
CWE-200
Status
published
Products (9)
tibco/silver_fabric_enabler
< 1.6.0
tibco/spotfire_deployment_kit
6.0.0
tibco/spotfire_deployment_kit
6.0.1
tibco/spotfire_deployment_kit
6.5.0
tibco/spotfire_deployment_kit
6.5.1
tibco/spotfire_web_player
6.0.0
tibco/spotfire_web_player
6.0.1
tibco/spotfire_web_player
6.5.0
tibco/spotfire_web_player
6.5.1
Published
Nov 21, 2014
Tracked Since
Feb 18, 2026