Vulnerability Details CVE-2010-4495
Unspecified vulnerability in the ActiveMatrix Runtime component in TIBCO ActiveMatrix Service Grid 3.0.0, 3.0.1, and 3.1.0; ActiveMatrix Service Bus 3.0.0 and 3.0.1; ActiveMatrix BusinessWorks Service Engine 5.9.0; ActiveMatrix BPM 1.0.1 and 1.0.2; Silver BPM Service 1.0.1; and Silver CAP Service 1.0.0 allows remote authenticated users to execute arbitrary code via vectors related to JMX connections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.4%
CVSS Severity
CVSS v2 Score 9.0
References
- http://secunia.com/advisories/42640
- http://www.securityfocus.com/bid/45400
- http://www.securitytracker.com/id?1024894
- http://www.tibco.com/multimedia/activematrix_advisory_20101214_tcm8-12728.txt
- http://www.vupen.com/english/advisories/2010/3241
- http://secunia.com/advisories/42640
- http://www.securityfocus.com/bid/45400
- http://www.securitytracker.com/id?1024894
- http://www.tibco.com/multimedia/activematrix_advisory_20101214_tcm8-12728.txt
- http://www.vupen.com/english/advisories/2010/3241
Products affected by CVE-2010-4495
-
cpe:2.3:a:tibco:activematrix_bpm:1.0.1
-
cpe:2.3:a:tibco:activematrix_bpm:1.0.2
-
cpe:2.3:a:tibco:activematrix_businessworks_service_engine:5.9.0
-
cpe:2.3:a:tibco:activematrix_service_bus:3.0.0
-
cpe:2.3:a:tibco:activematrix_service_bus:3.0.1
-
cpe:2.3:a:tibco:activematrix_service_grid:3.0.0
-
cpe:2.3:a:tibco:activematrix_service_grid:3.0.1
-
cpe:2.3:a:tibco:activematrix_service_grid:3.1.0
-
cpe:2.3:a:tibco:silver_bpm_service:1.0.1
-
cpe:2.3:a:tibco:silver_cap_service:1.0.0