High severity8.7NVD Advisory· Published Nov 14, 2023· Updated Jun 17, 2026
CVE-2023-26222
CVE-2023-26222
Description
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.9.22 and below, versions 6.0.13 and below and TIBCO Product and Service Catalog powered by TIBCO EBX: versions 5.0.0 and below.
Affected products
4- Range: <=5.9.22, <=6.0.13
<=5.0.0+ 1 more
- (no CPE)range: <=5.0.0
- (no CPE)range: 0
- Range: 0
Patches
Vulnerability mechanics
References
1- www.tibco.com/services/support/advisoriesnvdVendor Advisory
News mentions
0No linked articles in our index yet.