High severity8.8NVD Advisory· Published Apr 20, 2016· Updated May 6, 2026

CVE-2016-3628

Description

Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data.

Affected products

TIBCO Software/Enterprise Message Service
cpe:2.3:a:tibco:enterprise_message_service:*:*:*:*:*:*:*:*
Range: <=8.2.2
TIBCO Software/Enterprise Message Service Appliance Firmware
cpe:2.3:a:tibco:enterprise_message_service_appliance_firmware:*:*:*:*:*:*:*:*
Range: <=2.3.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.tibco.com/assets/blt8a2d9978616c21fe/2016-001-advisory.txtnvdVendor Advisory
www.tibco.com/mk/advisory.jspnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000