CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30575

The Web Console component of TIBCO Software Inc.'s TIBCO Data Science - Workbench, TIBCO Statistica, TIBCO Statistica - Estore Edition, and TIBCO Statistica Trial contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system. Affected releases are TIBCO Software Inc.'s TIBCO Data Science - Workbench: versions 14.0.0 and below, TIBCO Statistica: versions 14.0.0 and below, TIBCO Statistica - Estore Edition: versions 14.0.0 and below, and TIBCO Statistica Trial: versions 14.0.0 and below.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.9%

CVSS Severity

CVSS v3 Score 7.3

References

Products affected by CVE-2022-30575

Tibco » Data Science - Workbench » Version: N/A

cpe:2.3:a:tibco:data_science_-_workbench:-
Tibco » Data Science - Workbench » Version: 13.5.0

cpe:2.3:a:tibco:data_science_-_workbench:13.5.0
Tibco » Data Science - Workbench » Version: 13.6.0

cpe:2.3:a:tibco:data_science_-_workbench:13.6.0
Tibco » Data Science - Workbench » Version: 14.0.0

cpe:2.3:a:tibco:data_science_-_workbench:14.0.0
Tibco » Statistica » Version: N/A

cpe:2.3:a:tibco:statistica:-
Tibco » Statistica » Version: 13.3.0

cpe:2.3:a:tibco:statistica:13.3.0
Tibco » Statistica » Version: 13.3.1

cpe:2.3:a:tibco:statistica:13.3.1
Tibco » Statistica » Version: 13.4.0

cpe:2.3:a:tibco:statistica:13.4.0
Tibco » Statistica » Version: 13.5.0

cpe:2.3:a:tibco:statistica:13.5.0
Tibco » Statistica » Version: 13.6.0

cpe:2.3:a:tibco:statistica:13.6.0
Tibco » Statistica » Version: 14.0.0

cpe:2.3:a:tibco:statistica:14.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-30575

Products

Pricing

Contact Us