Unrated severityNVD Advisory· Published May 18, 2022· Updated Sep 16, 2024
TIBCO BusinessConnect Trading Community Management Cross-Site Request Forgery Vulnerability
CVE-2022-22778
Description
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute Cross-Site Request Forgery (CSRF) on the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management: versions 6.1.0 and below.
Affected products
2<=6.1.0+ 1 more
- (no CPE)range: <=6.1.0
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- www.tibco.com/services/support/advisoriesmitrex_refsource_CONFIRM
- www.tibco.com/support/advisories/2022/05/tibco-security-advisory-may-18-2022-tibco-bctcm-cve-2022-22778mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.