CVE-2021-43050
HIGHTIBCO BusinessConnect Container Edition <1.1.0 - Info Disclosure
Title source: llmDescription
The Auth Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition contains an easily exploitable vulnerability that allows an unauthenticated attacker with local access to obtain administrative usernames and passwords for the affected system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition: versions 1.1.0 and below.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.tibco.com/services/support/advisories
Vendor Advisory x_refsource_confirm
https://www.tibco.com/support/advisories/2022/01/tibco-security-advisory-february-15-2022-tibco-bcce-2021-43050
Scores
CVSS v3
8.4
EPSS
0.0003
EPSS Percentile
10.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
tibco/businessconnect
< 1.1.1
Published
Feb 15, 2022
Tracked Since
Feb 18, 2026