CVE-2014-5286
First published: Thu Feb 19 2015(Updated: )
The ActiveMatrix Policy Manager Authentication module in TIBCO ActiveMatrix Policy Agent 3.x before 3.1.2, ActiveMatrix Policy Manager 3.x before 3.1.2, ActiveMatrix Management Agent 1.x before 1.2.1 for WCF, and ActiveMatrix Management Agent 1.x before 1.2.1 for WebSphere allows remote attackers to gain privileges and obtain sensitive information via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tibco Activematrix Management Agent | =1.0.0 | |
| Tibco Activematrix Management Agent | =1.0.0 | |
| Tibco Activematrix Management Agent | =1.1.0 | |
| Tibco Activematrix Management Agent | =1.1.0 | |
| Tibco Activematrix Management Agent | =1.2.0 | |
| Tibco Activematrix Management Agent | =1.2.0 | |
| TIBCO ActiveMatrix Policy Agent | =3.0.0 | |
| TIBCO ActiveMatrix Policy Agent | =3.1.0 | |
| TIBCO ActiveMatrix Policy Agent | =3.1.1 | |
| Tibco Activematrix Policy Manager | =3.0.0 | |
| Tibco Activematrix Policy Manager | =3.1.0 | |
| Tibco Activematrix Policy Manager | =3.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-5286?
The severity of CVE-2014-5286 is classified as important as it can allow remote attackers to exploit the affected systems.
How do I fix CVE-2014-5286?
To fix CVE-2014-5286, upgrade the affected TIBCO ActiveMatrix software to versions 3.1.2 or higher.
Which TIBCO products are affected by CVE-2014-5286?
CVE-2014-5286 affects TIBCO ActiveMatrix Management Agent versions 1.x, ActiveMatrix Policy Agent 3.x, and ActiveMatrix Policy Manager 3.x prior to 3.1.2.
Can CVE-2014-5286 be exploited remotely?
Yes, CVE-2014-5286 allows remote attackers to exploit vulnerable installations without physical access.
What versions are vulnerable to CVE-2014-5286?
The vulnerable versions for CVE-2014-5286 include TIBCO ActiveMatrix Management Agent 1.x prior to 1.2.1 and ActiveMatrix Policy Manager 3.x prior to 3.1.2.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/tags
- agent/description
- agent/source
- vendor/tibco
- canonical/tibco activematrix management agent
- version/tibco activematrix management agent/1.0.0
- version/tibco activematrix management agent/1.1.0
- version/tibco activematrix management agent/1.2.0
- canonical/tibco activematrix policy agent
- version/tibco activematrix policy agent/3.0.0
- version/tibco activematrix policy agent/3.1.0
- version/tibco activematrix policy agent/3.1.1
- canonical/tibco activematrix policy manager
- version/tibco activematrix policy manager/3.0.0
- version/tibco activematrix policy manager/3.1.0
- version/tibco activematrix policy manager/3.1.1