Vulnerability Details CVE-2018-5436
The Spotfire server component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contain multiple vulnerabilities that may allow for the disclosure of information, including user and data source credentials. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: versions up to and including 7.12.0, TIBCO Spotfire Server: versions up to and including 7.8.1; 7.9.0; 7.10.0; 7.11.0; 7.12.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2018/06/tibco-security-advisory-june-26-2018-tibco-spotfire-2018-5436
- http://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2018/06/tibco-security-advisory-june-26-2018-tibco-spotfire-2018-5436
Products affected by CVE-2018-5436
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:-
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:6.5
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:7.0.0
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:7.0.2
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:7.8.0
-
cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:7.8.1
-
cpe:2.3:a:tibco:spotfire_server:4.5.1
-
cpe:2.3:a:tibco:spotfire_server:5.0.2
-
cpe:2.3:a:tibco:spotfire_server:5.5.1
-
cpe:2.3:a:tibco:spotfire_server:5.5.2
-
cpe:2.3:a:tibco:spotfire_server:5.5.3
-
cpe:2.3:a:tibco:spotfire_server:6.0.2
-
cpe:2.3:a:tibco:spotfire_server:6.0.3
-
cpe:2.3:a:tibco:spotfire_server:6.0.4
-
cpe:2.3:a:tibco:spotfire_server:6.5.0
-
cpe:2.3:a:tibco:spotfire_server:6.5.1
-
cpe:2.3:a:tibco:spotfire_server:6.5.2
-
cpe:2.3:a:tibco:spotfire_server:6.5.3
-
cpe:2.3:a:tibco:spotfire_server:7.0.0
-
cpe:2.3:a:tibco:spotfire_server:7.0.1
-
cpe:2.3:a:tibco:spotfire_server:7.0.2
-
cpe:2.3:a:tibco:spotfire_server:7.10.0
-
cpe:2.3:a:tibco:spotfire_server:7.11.0
-
cpe:2.3:a:tibco:spotfire_server:7.12.0
-
cpe:2.3:a:tibco:spotfire_server:7.5.0
-
cpe:2.3:a:tibco:spotfire_server:7.5.1
-
cpe:2.3:a:tibco:spotfire_server:7.6.0
-
cpe:2.3:a:tibco:spotfire_server:7.6.1
-
cpe:2.3:a:tibco:spotfire_server:7.7.0
-
cpe:2.3:a:tibco:spotfire_server:7.7.1
-
cpe:2.3:a:tibco:spotfire_server:7.8.0
-
cpe:2.3:a:tibco:spotfire_server:7.8.1
-
cpe:2.3:a:tibco:spotfire_server:7.9.0