Vulnerabilities > CVE-2019-11206 - Unspecified vulnerability in Tibco products

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

tibco

NVD

Published: 2019-05-14

Updated: 2023-01-30

Summary

The Spotfire library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains vulnerabilities that theoretically allow a malicious user to undermine the integrity of comments and bookmarks. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: versions up to and including 10.2.0, and TIBCO Spotfire Server: versions up to and including 7.11.2; 7.12.0; 7.13.0; 7.14.0; 10.0.0; 10.0.1; 10.1.0; and 10.2.0.

Vulnerable Configurations

Part	Description	Count
Application	Tibco Tibco Spotfire Server 7.12.0 Tibco Spotfire Server 7.13.0 Tibco Spotfire Server 7.14.0 Tibco Spotfire Server 10.0.0 Tibco Spotfire Server 4.5.1 Tibco Spotfire Server 5.0.2 Tibco Spotfire Server 5.5.1 Tibco Spotfire Server 5.5.2 Tibco Spotfire Server 5.5.3 Tibco Spotfire Server 6.0.2 Tibco Spotfire Server 6.0.3 Tibco Spotfire Server 6.0.4 Tibco Spotfire Server 6.5.0 Tibco Spotfire Server 6.5.1 Tibco Spotfire Server 6.5.2 Tibco Spotfire Server 6.5.3 Tibco Spotfire Server 7.0.0 Tibco Spotfire Server 7.0.1 Tibco Spotfire Server 7.0.2 Tibco Spotfire Server 7.5.0 Tibco Spotfire Server 7.5.1 Tibco Spotfire Server 7.6.0 Tibco Spotfire Server 7.6.1 Tibco Spotfire Server 7.7.0 Tibco Spotfire Server 7.7.1 Tibco Spotfire Server 7.8.0 Tibco Spotfire Server 7.8.1 Tibco Spotfire Server 7.8.2 Tibco Spotfire Server 7.9.0 Tibco Spotfire Server 7.9.1 Tibco Spotfire Server 7.10.0 Tibco Spotfire Server 7.10.1 Tibco Spotfire Server 7.10.2 Tibco Spotfire Server 7.11.0 Tibco Spotfire Server 7.11.1 Tibco Spotfire Server 7.11.2 Tibco Spotfire Server 10.0.1 Tibco Spotfire Server 10.1.0 Tibco Spotfire Server 10.2.0 Tibco Spotfire Analytics Platform FOR AWS - Tibco Spotfire Analytics Platform FOR AWS 6.5 Tibco Spotfire Analytics Platform FOR AWS 7.0.0 Tibco Spotfire Analytics Platform FOR AWS 7.0.2 Tibco Spotfire Analytics Platform FOR AWS 7.8.0 Tibco Spotfire Analytics Platform FOR AWS 7.8.1 Tibco Spotfire Analytics Platform FOR AWS 7.14.0 Tibco Spotfire Analytics Platform FOR AWS 7.14.1 Tibco Spotfire Analytics Platform FOR AWS 10.0.0 Tibco Spotfire Analytics Platform FOR AWS 10.0.1 Tibco Spotfire Analytics Platform FOR AWS 10.1.0 Tibco Spotfire Analytics Platform FOR AWS 10.2.0	51

Summary

Vulnerable Configurations

References