Vulnerabilities > Tibco > Nimbus > 8.1.2

DATE CVE VULNERABILITY TITLE RISK
2023-09-29 CVE-2023-26218 Cross-site Scripting vulnerability in Tibco Nimbus
The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker to social engineer a legitimate user with network access to execute scripts targeting the affected system or the victim's local system.
network
low complexity
tibco CWE-79
critical
 9.0
9.0
2021-10-26 CVE-2021-35499 Cross-site Scripting vulnerability in Tibco Nimbus
The Web Reporting component of TIBCO Software Inc.'s TIBCO Nimbus contains easily exploitable Stored Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker to social engineer a legitimate user with network access to execute scripts targeting the affected system or the victim's local system.
network
low complexity
tibco CWE-79
5.4
5.4