Latest Tibco Vulnerabilities

CVE-2023-26222
TIBCO EBX Cross-site Scripting (XXS) Vulnerability
TIBCO EBX<=5.0.0
TIBCO EBX>=5.1.1<5.9.23
TIBCO EBX>=6.0.0<6.0.14
CVE-2023-26221
TIBCO Spotfire Insufficiently Protected Credential vulnerability
TIBCO Spotfire Analyst=12.3.0
TIBCO Spotfire Analyst=12.4.0
TIBCO Spotfire Analyst=12.5.0
Tibco Spotfire Analytics Platform=12.5.0
TIBCO Spotfire Server=12.3.0
TIBCO Spotfire Server=12.4.0
and 1 more
CVE-2023-26219
The Hawk Console and Hawk Agent components of TIBCO Software Inc.'s TIBCO Hawk, TIBCO Hawk Distribution for TIBCO Silver Fabric, TIBCO Operational Intelligence Hawk RedTail, and TIBCO Runtime Agent co...
TIBCO Hawk<6.2.3
TIBCO Hawk Distribution for TIBCO Silver Fabric<6.2.3
TIBCO Operational Intelligence Hawk RedTail<7.2.2
Tibco Runtime Agent<5.12.3
CVE-2023-26220
The Spotfire Library component of TIBCO Software Inc.'s Spotfire Analyst and Spotfire Server contains an easily exploitable vulnerability that allows a low privileged attacker with network access to e...
TIBCO Spotfire Analyst<=11.4.7
TIBCO Spotfire Analyst=11.5.0
TIBCO Spotfire Analyst=11.6.0
TIBCO Spotfire Analyst=11.7.0
TIBCO Spotfire Analyst=11.8.0
TIBCO Spotfire Analyst=12.0.0
and 23 more
CVE-2023-26218
The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker to social engineer ...
TIBCO Nimbus<10.6.1
CVE-2023-26217
The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access ...
TIBCO EBX Add-ons<=4.5.17
TIBCO EBX Add-ons>=5.0.0<=5.6.2
TIBCO EBX Add-ons=6.1.0
CVE-2023-26215
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application access to read system files that are accessible to the...
TIBCO EBX Add-ons<4.5.17
CVE-2023-26216
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected rele...
TIBCO EBX Add-ons<4.5.17
CVE-2023-29268
The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files withi...
TIBCO Spotfire Statistics Services<11.4.11
TIBCO Spotfire Statistics Services=11.5.0
TIBCO Spotfire Statistics Services=11.6.0
TIBCO Spotfire Statistics Services=11.6.1
TIBCO Spotfire Statistics Services=11.6.2
TIBCO Spotfire Statistics Services=11.7.0
and 7 more
CVE-2022-41566
The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute stored XSS on the affe...
TIBCO EBX Add-ons<5.6.1
CVE-2022-41567
The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a cros...
TIBCO BusinessConnect<7.3.1
CVE-2023-26214
The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker wi...
TIBCO BusinessConnect<7.3.1
CVE-2022-41565
The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged at...
TIBCO EBX<5.9.22
TIBCO EBX>=6.0.0<6.0.12
TIBCO Product and Service Catalog powered by TIBCO EBX<1.2.1
CVE-2022-41564
The Hawk Console component of TIBCO Software Inc.'s TIBCO Hawk and TIBCO Operational Intelligence Hawk RedTail contains a vulnerability that will return the EMS transport password and EMS SSL password...
TIBCO Hawk>=6.1.0<6.2.2
TIBCO Operational Intelligence Hawk RedTail>=7.0.0<7.2.1
CVE-2022-41563
Tibco Jasperreports Server<=8.0.2
Tibco Jasperreports Server<=8.0.2
TIBCO JasperReports Server -<=8.0.2
Tibco Jasperreports Server<=8.1.0
Tibco Jasperreports Server=8.1.0
Tibco Jasperreports Server=8.1.0
and 1 more
CVE-2022-41561
The JNDI Data Sources component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer ...
Tibco Jasperreports Server<=8.0.2
Tibco Jasperreports Server<=8.0.2
TIBCO JasperReports Server -<=8.0.2
Tibco Jasperreports Server<=8.1.0
Tibco Jasperreports Server<=8.1.0
Tibco Jasperreports Server=8.1.0
and 2 more
CVE-2022-41558
The Visualizations component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analyst, TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Desk...
TIBCO Spotfire Analyst<=11.4.4
TIBCO Spotfire Analyst=11.5.0
TIBCO Spotfire Analyst=11.6.0
TIBCO Spotfire Analyst=11.7.0
TIBCO Spotfire Analyst=11.8.0
TIBCO Spotfire Analyst=12.0.0
and 23 more
CVE-2022-30578
The Web Server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute Stored Cross Site ...
TIBCO EBX Add-ons<5.4.2
CVE-2022-30579
The Web Player component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows a low privil...
Tibco Spotfire Analytics Platform=12.0.0
TIBCO Spotfire Server=12.0.0
CVE-2022-30575
The Web Console component of TIBCO Software Inc.'s TIBCO Data Science - Workbench, TIBCO Statistica, TIBCO Statistica - Estore Edition, and TIBCO Statistica Trial contains easily exploitable Reflected...
TIBCO Data Science - Workbench<14.0.1
TIBCO Statistica<14.0.1
TIBCO Statistica<14.0.1
TIBCO Statistica<14.0.1
CVE-2022-30574
The ftlserver component of TIBCO Software Inc.'s TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, TIBCO FTL - Enterprise Edition, TIBCO FTL - Enterprise Edition, TIBCO eFTL - Community Ed...
TIBCO FTL>=6.0.0<=6.7.3
TIBCO FTL>=6.0.0<=6.8.0
TIBCO FTL>=6.0.1<=6.8.0
TIBCO FTL=6.8.0
TIBCO eFTL>=6.0.0<=6.7.3
TIBCO eFTL>=6.0.0<=6.8.0
and 2 more
CVE-2022-30573
The ftlserver component of TIBCO Software Inc.'s TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, TIBCO FTL - Enterprise Edition, and TIBCO FTL - Enterprise Edition contains an easily exp...
TIBCO FTL>=6.0.0<=6.7.3
TIBCO FTL>=6.0.0<=6.8.0
TIBCO FTL>=6.0.1<=6.8.0
TIBCO FTL=6.8.0
CVE-2022-30572
The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager contains an easily exploitable Directory Traversal vulnerability that allows a low privileged attacker wi...
TIBCO iWay Service Manager<8.0.7
CVE-2022-30571
The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privile...
TIBCO iWay Service Manager<8.0.7
CVE-2022-30570
The Column Based Security component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains an easily exploitable vulnerability that allows a low ...
TIBCO Data Virtualization<=8.5.2
TIBCO Data Virtualization for AWS Marketplace<=8.5.2
CVE-2022-22778
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains an easily exploitable vulnerability that allows an unauthenticated attacker with network a...
TIBCO BusinessConnect Trading Community Management<6.1.1
CVE-2022-22776
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains easily exploitable vulnerabilities that allows a low privileged attacker with network acce...
TIBCO BusinessConnect Trading Community Management<6.1.1
CVE-2022-22775
TIBCO BPM Enterprise<4.3.2
Tibco Bpm Enterprise Distribution For Silver Fabric<4.3.2
CVE-2022-22773
The REST API component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server - Community Edition, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server f...
Tibco Jasperreports Server<=7.9.2
Tibco Jasperreports Server<8.0.2
Tibco Jasperreports Server<8.0.2
TIBCO JasperReports Server -<8.0.2
Tibco Jasperreports Server<8.0.2
Tibco Jasperreports Server<8.0.2
CVE-2022-22774
The DOM XML parser and SAX XML parser components of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, TIBCO Managed File Transfer Command Center, TIBCO Managed File Transfer Internet S...
TIBCO Managed File Transfer Command Center<8.3.2
TIBCO Managed File Transfer Command Center>=8.4.0<8.4.2
TIBCO Managed File Transfer Internet Server<8.3.2
TIBCO Managed File Transfer Internet Server>=8.4.0<8.4.2
CVE-2022-22771
The Server component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace,...
Tibco Jasperreports Library=7.9.0
Tibco Jasperreports Library=7.9.0
TIBCO JasperReports Server -=7.9.0
Tibco Jasperreports Server=7.9.0
Tibco Jasperreports Server=7.9.0
Tibco Jasperreports Server=7.9.0
and 4 more
CVE-2021-43049
The Database component of TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to obta...
TIBCO BusinessConnect<1.1.1
CVE-2022-22770
The Web Server component of TIBCO Software Inc.'s TIBCO AuditSafe contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute API methods on the...
TIBCO AuditSafe<1.1.1
CVE-2021-43050
The Auth Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition contains an easily exploitable vulnerability that allows an unauthenticated attacker with local access to obt...
TIBCO BusinessConnect<1.1.1
CVE-2022-22769
The Web server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, TIBCO EBX Add-ons, TIBCO EBX Add-ons, TIBCO EBX Add-ons, and TIBCO Product and Service Catalog powered by TIBCO EBX c...
TIBCO EBX<5.8.125
TIBCO EBX=5.9.3
TIBCO EBX=5.9.4
TIBCO EBX=5.9.5
TIBCO EBX=5.9.6
TIBCO EBX=5.9.7
and 39 more
CVE-2021-35500
The Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization, TIBCO Data Virtualization, TIBCO Data Virtualization, and TIBCO Data Virtualization for AWS Marketplace con...
TIBCO Data Virtualization<=8.3.0
TIBCO Data Virtualization=8.4.0
TIBCO Data Virtualization=8.5.0
TIBCO Data Virtualization for AWS Marketplace<=8.5.0
CVE-2021-43055
The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains an easily exploitable vulnerability that...
TIBCO eFTL<=6.7.2
TIBCO eFTL<=6.7.2
TIBCO eFTL<=6.7.2
CVE-2021-43052
The Realm Server component of TIBCO Software Inc.'s TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, and TIBCO FTL - Enterprise Edition contains an easily exploitable vulnerability that a...
TIBCO FTL<=6.7.2
TIBCO FTL<=6.7.2
TIBCO FTL<=6.7.2
CVE-2021-43054
The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains an easily exploitable vulnerability that...
TIBCO eFTL<=6.7.2
TIBCO eFTL<=6.7.2
TIBCO eFTL<=6.7.2
CVE-2021-43051
The Spotfire Server component of TIBCO Software Inc.'s TIBCO Spotfire Server, TIBCO Spotfire Server, and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows malicious custo...
TIBCO Spotfire Server<=10.10.6
TIBCO Spotfire Server=11.0.0
TIBCO Spotfire Server=11.1.0
TIBCO Spotfire Server=11.2.0
TIBCO Spotfire Server=11.3.0
TIBCO Spotfire Server=11.4.0
and 3 more
CVE-2021-43046
The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain an easily exploitable vulnerability that allows an unauthenticated attacker with network access ...
TIBCO PartnerExpress<=6.2.1
CVE-2021-43047
The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain easily exploitable Stored and Reflected Cross Site Scripting (XSS) vulnerabilities that allow a ...
TIBCO PartnerExpress<=6.2.1
CVE-2021-43048
The Interior Server and Gateway Server components of TIBCO Software Inc.'s TIBCO PartnerExpress contain a vulnerability that theoretically allows an unauthenticated attacker with network access to exe...
TIBCO PartnerExpress<=6.2.1
CVE-2021-35499
The Web Reporting component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Stored Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker to social engineer ...
TIBCO Nimbus<=10.4.0
CVE-2021-35498
The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, and TIBCO Product and Service Catalog powered by TIBCO EBX contains a vulnerability that under certain spec...
TIBCO EBX<5.8.124
TIBCO EBX>=5.9.3<5.9.15
TIBCO EBX>=6.0.0<6.0.2
TIBCO Product and Service Catalog powered by TIBCO EBX=1.0.0
CVE-2021-35496
The XMLA Connections component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Com...
TIBCO JasperReports Server -<=7.2.1
Tibco Jasperreports Server<=7.8.0
Tibco Jasperreports Server<=7.8.0
Tibco Jasperreports Server<=7.9.0
Tibco Jasperreports Server<=7.9.0
Tibco Jasperreports Server<=7.9.0
and 4 more
CVE-2021-35494
The Rest API component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server, TIBCO JasperReports Server - Community E...
TIBCO JasperReports Server -<=7.2.1
Tibco Jasperreports Server<=7.8.0
Tibco Jasperreports Server<=7.8.0
Tibco Jasperreports Server<=7.9.0
Tibco Jasperreports Server<=7.9.0
Tibco Jasperreports Server<=7.9.0
and 4 more
CVE-2021-35497
TIBCO ActiveSpaces=4.3.0
TIBCO ActiveSpaces=4.3.0
TIBCO ActiveSpaces=4.3.0
TIBCO ActiveSpaces=4.4.0
TIBCO ActiveSpaces=4.4.0
TIBCO ActiveSpaces=4.4.0
and 60 more
CVE-2021-35493
The WebFOCUS Reporting Server and WebFOCUS Client components of TIBCO Software Inc.'s TIBCO WebFOCUS Client, TIBCO WebFOCUS Installer, and TIBCO WebFOCUS Reporting Server contain easily exploitable St...
TIBCO WebFOCUS Client<=8207.27.0
TIBCO WebFOCUS Installer<=8207.27.0
TIBCO WebFOCUS Reporting Server<=8207.27.0
CVE-2021-23275
The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Ed...
TIBCO Enterprise Runtime for R<=1.2.4
TIBCO Enterprise Runtime for R=1.3.0
TIBCO Enterprise Runtime for R=1.3.1
TIBCO Enterprise Runtime for R=1.4.0
TIBCO Enterprise Runtime for R=1.5.0
TIBCO Enterprise Runtime for R=1.6.0
and 26 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203