Unrated severityNVD Advisory· Published Jun 27, 2018· Updated Sep 17, 2024

TIBCO Spotfire Server information disclosure vulnerabilities

CVE-2018-5436

Description

The Spotfire server component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contain multiple vulnerabilities that may allow for the disclosure of information, including user and data source credentials. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: versions up to and including 7.12.0, TIBCO Spotfire Server: versions up to and including 7.8.1; 7.9.0; 7.10.0; 7.11.0; 7.12.0.

Affected products

TIBCO Software/TIBCO Spotfire Analytics Platform for AWS Marketplacellm-fuzzy
Range: <= 7.12.0
TIBCO Software/TIBCO Spotfire Serverllm-fuzzy
Range: <= 7.8.1; 7.9.0; 7.10.0; 7.11.0; 7.12.0
TIBCO Software/Spotfire Analytics Platform For Awscpe-rescue
Range: unspecified
TIBCO Software/Tibco Spotfire Server Versionscpe-rescue
Range: unspecified

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.tibco.com/services/support/advisoriesmitrex_refsource_MISC
www.tibco.com/support/advisories/2018/06/tibco-security-advisory-june-26-2018-tibco-spotfire-2018-5436mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000