CVE-2014-2542: XSS
First published: Tue Apr 08 2014(Updated: )
Cross-site scripting (XSS) vulnerability in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| TIBCO Rendezvous | <=8.4.1 | |
| TIBCO Rendezvous | =7.4.11 | |
| TIBCO Rendezvous | =7.5.1 | |
| TIBCO Rendezvous | =7.5.2 | |
| TIBCO Rendezvous | =7.5.3 | |
| TIBCO Rendezvous | =7.5.4 | |
| TIBCO Rendezvous | =8.2.1 | |
| TIBCO Rendezvous | =8.3.0 | |
| TIBCO Rendezvous | =8.3.1 | |
| TIBCO Rendezvous | =8.10 | |
| Tibco Substantiation Es | <=2.8.0 | |
| Tibco Messaging Appliance | <=8.7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tibco
- canonical/tibco rendezvous
- version/tibco rendezvous/8.4.1
- version/tibco rendezvous/7.4.11
- version/tibco rendezvous/7.5.1
- version/tibco rendezvous/7.5.2
- version/tibco rendezvous/7.5.3
- version/tibco rendezvous/7.5.4
- version/tibco rendezvous/8.2.1
- version/tibco rendezvous/8.3.0
- version/tibco rendezvous/8.3.1
- version/tibco rendezvous/8.10
- canonical/tibco substantiation es
- version/tibco substantiation es/2.8.0
- canonical/tibco messaging appliance
- version/tibco messaging appliance/8.7.0