Unrated severityNVD Advisory· Published Nov 10, 2020· Updated Sep 17, 2024
TIBCO iProcess Workspace Browser CSRF
CVE-2020-27146
Description
The Core component of TIBCO Software Inc.'s TIBCO iProcess Workspace (Browser) contains a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a Cross Site Request Forgery (CSRF) attack on the affected system. A successful attack using this vulnerability requires human interaction from an authenticated user other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO iProcess Workspace (Browser): versions 11.6.0 and below.
Affected products
2<=11.6.0+ 1 more
- (no CPE)range: <=11.6.0
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- www.tibco.com/services/support/advisoriesmitrex_refsource_CONFIRM
- www.tibco.com/support/advisories/2020/11/tibco-security-advisory-november-10-2020-tibco-iprocess-workspacemitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.