Description
Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101545
Vendor Advisory x_refsource_misc
http://www.tibco.com/services/support/advisories
Vendor Advisory x_refsource_confirm
https://www.tibco.com/support/advisories/2017/10/tibco-security-advisory-october-17-2017-tibco-managed-file-transfer
Scores
CVSS v3
8.0
EPSS
0.0055
EPSS Percentile
68.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Details
Status
published
Products (8)
tibco/managed_file_transfer_command_center
8.0.0
tibco/managed_file_transfer_command_center
8.0.1
tibco/managed_file_transfer_internet_server
8.0.0
tibco/managed_file_transfer_internet_server
8.0.1
TIBCO Software Inc./TIBCO Managed File Transfer Command Center
8.0.0
TIBCO Software Inc./TIBCO Managed File Transfer Command Center
8.0.1
TIBCO Software Inc./TIBCO Managed File Transfer Internet Server
8.0.0
TIBCO Software Inc./TIBCO Managed File Transfer Internet Server
8.0.1
Published
Oct 17, 2017
Tracked Since
Feb 18, 2026