Unrated severityNVD Advisory· Published Nov 16, 2021· Updated Sep 17, 2024
TIBCO PartnerExpress Click-Jacking vulnerability
CVE-2021-43048
Description
The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain a vulnerability that theoretically allows an unauthenticated attacker with network access to execute a clickjacking attack on the affected system. A successful attack using this vulnerability does not require human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO PartnerExpress: versions 6.2.1 and below.
Affected products
2<=6.2.1+ 1 more
- (no CPE)range: <=6.2.1
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- www.tibco.com/services/support/advisoriesmitrex_refsource_CONFIRM
- www.tibco.com/support/advisories/2021/11/tibco-security-advisory-november-16-2021-tibco-partnerexpress-2021-43048mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.