What is the severity of CVE-2012-0689?

CVE-2012-0689 is classified as a medium severity vulnerability.

How do I fix CVE-2012-0689?

To fix CVE-2012-0689, you should upgrade affected TIBCO products to versions 3.1.5 or later for Service Grid, and 5.9.3 for BusinessWorks Service Engine.

What software is affected by CVE-2012-0689?

CVE-2012-0689 affects TIBCO ActiveMatrix BPM versions 1.0.1, 1.0.2, BusinessWorks Service Engine version 5.9.0, and various versions of Service Bus and Service Grid.

What type of vulnerability is CVE-2012-0689?

CVE-2012-0689 is a credential discovery vulnerability that allows remote attackers to access sensitive information.

Is there a patch available for CVE-2012-0689?

Yes, TIBCO has released patches for CVE-2012-0689 in the updated versions of the affected software.

Vulnerability/
CVE-2012-0689

medium

CWE

200

13/3/2012

16/9/2024

CVE-2012-0689: Infoleak

First published: Tue Mar 13 2012(Updated: )

The server in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWorks Service Engine 5.9.x before 5.9.3, and BPM before 1.3.0 allows remote attackers to discover credentials via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
TIBCO ActiveMatrix BPM	=1.0.1
TIBCO ActiveMatrix BPM	=1.0.2
Tibco Activematrix Businessworks Service Engine	=5.9.0
Tibco Activematrix Service Bus	=3.0.0
Tibco Activematrix Service Bus	=3.0.1
Tibco Activematrix Service Grid	=3.0.0
Tibco Activematrix Service Grid	=3.0.1
Tibco Activematrix Service Grid	=3.1.0
TIBCO Silver Fabric ActiveMatrix Service Grid Distribution	=3.1.3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0689?
CVE-2012-0689 is classified as a medium severity vulnerability.
How do I fix CVE-2012-0689?
To fix CVE-2012-0689, you should upgrade affected TIBCO products to versions 3.1.5 or later for Service Grid, and 5.9.3 for BusinessWorks Service Engine.
What software is affected by CVE-2012-0689?
CVE-2012-0689 affects TIBCO ActiveMatrix BPM versions 1.0.1, 1.0.2, BusinessWorks Service Engine version 5.9.0, and various versions of Service Bus and Service Grid.
What type of vulnerability is CVE-2012-0689?
CVE-2012-0689 is a credential discovery vulnerability that allows remote attackers to access sensitive information.
Is there a patch available for CVE-2012-0689?
Yes, TIBCO has released patches for CVE-2012-0689 in the updated versions of the affected software.

collector/nvd-index
agent/type
agent/references
agent/softwarecombine
agent/weakness
agent/tags
agent/severity
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
vendor/tibco
canonical/tibco activematrix bpm
version/tibco activematrix bpm/1.0.1
version/tibco activematrix bpm/1.0.2
canonical/tibco activematrix businessworks service engine
version/tibco activematrix businessworks service engine/5.9.0
canonical/tibco activematrix service bus
version/tibco activematrix service bus/3.0.0
version/tibco activematrix service bus/3.0.1
canonical/tibco activematrix service grid
version/tibco activematrix service grid/3.0.0
version/tibco activematrix service grid/3.0.1
version/tibco activematrix service grid/3.1.0
canonical/tibco silver fabric activematrix service grid distribution
version/tibco silver fabric activematrix service grid distribution/3.1.3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.