Vulnerability Details CVE-2011-3134
Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to modify data or obtain sensitive information via a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/45864
- http://www.securitytracker.com/id?1025999
- http://www.tibco.com/multimedia/spotfire_advisory_20110831_tcm8-14230.txt
- http://www.tibco.com/services/support/advisories/default.jsp
- http://secunia.com/advisories/45864
- http://www.securitytracker.com/id?1025999
- http://www.tibco.com/multimedia/spotfire_advisory_20110831_tcm8-14230.txt
- http://www.tibco.com/services/support/advisories/default.jsp
Products affected by CVE-2011-3134
-
cpe:2.3:a:tibco:spotfire_analytics_server:*
-
cpe:2.3:a:tibco:spotfire_analytics_server:10.0.0
-
cpe:2.3:a:tibco:spotfire_server:3.0.0
-
cpe:2.3:a:tibco:spotfire_server:3.0.1
-
cpe:2.3:a:tibco:spotfire_server:3.1.0
-
cpe:2.3:a:tibco:spotfire_server:3.1.1
-
cpe:2.3:a:tibco:spotfire_server:3.2.0
-
cpe:2.3:a:tibco:spotfire_server:3.3.0