CVE-2022-22770
CRITICALTIBCO AuditSafe < 1.1.1 - Unauthenticated API Method Execution
Title source: llmDescription
The Web Server component of TIBCO Software Inc.'s TIBCO AuditSafe contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute API methods on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO AuditSafe: versions 1.1.0 and below.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.tibco.com/services/support/advisories
Scores
CVSS v3
9.8
EPSS
0.0193
EPSS Percentile
83.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
tibco/auditsafe
< 1.1.1
Published
Feb 15, 2022
Tracked Since
Feb 18, 2026