Vulnerabilities > Tibco > Managed File Transfer Command Center > 7.2.4

DATE CVE VULNERABILITY TITLE RISK
2020-06-30 CVE-2020-9414 Cross-site Scripting vulnerability in Tibco products
The MFT admin service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contains a vulnerability that theoretically allows an authenticated user with specific permissions to obtain the session identifier of another user.
network
low complexity
tibco CWE-79
8.8
8.8
2020-06-30 CVE-2020-9413 Cross-site Scripting vulnerability in Tibco products
The MFT Browser file transfer client and MFT Browser admin client components of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center and TIBCO Managed File Transfer Internet Server contain a vulnerability that theoretically allows an attacker to craft an URL that will execute arbitrary commands on the affected system.
network
low complexity
tibco CWE-79
critical
 9.6
9.6
2018-12-11 CVE-2018-18810 Unspecified vulnerability in Tibco products
The Administrator Service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, and TIBCO Managed File Transfer Internet Server contains vulnerabilities where an authenticated user with specific privileges can gain access to credentials to other systems.
network
low complexity
tibco
4.0
4.0
2015-09-29 CVE-2015-5711 Information Exposure vulnerability in Tibco products
TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request.
network
low complexity
tibco CWE-200
4.0
4.0