CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-17331

The Data Exchange Web Interface component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions up to and including 3.20.13, version 4.1.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.2%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 3.5

References

http://www.tibco.com/services/support/advisories
https://www.tibco.com/support/advisories/2019/11/tibco-security-advisory-november-12-2019-tibco-ebx-add-on-2019-17331
http://www.tibco.com/services/support/advisories
https://www.tibco.com/support/advisories/2019/11/tibco-security-advisory-november-12-2019-tibco-ebx-add-on-2019-17331

Products affected by CVE-2019-17331

Tibco » Ebx Add-Ons » Version: N/A

cpe:2.3:a:tibco:ebx_add-ons:-
Tibco » Ebx Add-Ons » Version: 3.20.13

cpe:2.3:a:tibco:ebx_add-ons:3.20.13
Tibco » Ebx Add-Ons » Version: 4.1.0

cpe:2.3:a:tibco:ebx_add-ons:4.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-17331

Products

Pricing

Contact Us