VYPR
Unrated severityNVD Advisory· Published Aug 2, 2022· Updated Sep 16, 2024

TIBCO iWay Service Manager Reflected Cross Site Scripting (XSS) Vulnerability

CVE-2022-30571

Description

The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system. Affected releases are TIBCO Software Inc.'s TIBCO iWay Service Manager: versions 8.0.6 and below.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.