CVE-2015-5711: Infoleak
First published: Tue Sep 29 2015(Updated: )
TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| TIBCO Managed File Transfer Internet Server | <=7.2.4 | |
| TIBCO Vault | <=2.0.0 | |
| TIBCO Managed File Transfer Command Center | <=7.2.4 | |
| TIBCO Slingshot | <=1.9.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2015-5711?
CVE-2015-5711 is classified as a medium-severity vulnerability that may allow sensitive information disclosure.
How do I fix CVE-2015-5711?
To remediate CVE-2015-5711, update TIBCO Managed File Transfer Internet Server, Managed File Transfer Command Center, Slingshot, and Vault to versions 7.2.5 or higher.
Who is affected by CVE-2015-5711?
CVE-2015-5711 affects users of TIBCO Managed File Transfer Internet Server, Command Center, Slingshot, and Vault before specified versions.
What kind of attacks does CVE-2015-5711 allow?
CVE-2015-5711 allows remote authenticated users to conduct crafted HTTP requests to gain sensitive information.
Is there a patch for CVE-2015-5711?
Yes, patches are available in the updated versions of the affected TIBCO software applications.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/tibco
- canonical/tibco managed file transfer internet server
- version/tibco managed file transfer internet server/7.2.4
- canonical/tibco vault
- version/tibco vault/2.0.0
- canonical/tibco managed file transfer command center
- version/tibco managed file transfer command center/7.2.4
- canonical/tibco slingshot
- version/tibco slingshot/1.9.3