Lucene search
China National Vulnerability DatabaseCNVD-2022-15513HistoryJan 13, 2022 - 12:00 a.m.
Tibco Eftl Information Disclosure Vulnerability (CNVD-2022-15513)
2022-01-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
42.9%
Tibco Eftl is an add-on to Tibco Ftl and Tibco Enterprise Message Service™ from Tibco USA, Inc. Extending Tibco Ftl® messaging to platforms such as Web browsers and mobile devices, TIBCO eFTL is vulnerable to information disclosure, which can be exploited by a low privilege attacker with network access to generate an API token that can access any other channel with arbitrary privileges.
Related
cve
cve
CVE-2021-43054
2022-01-11 19:15:07
nvd
nvd
CVE-2021-43054
2022-01-11 19:15:07
tibco
tibco
TIBCO Security Advisory: January 11, 2022 - TIBCO eFTL -2021-43054
2022-01-07 00:13:00
TIBCO Security Advisory: January 11, 2022 - TIBCO eFTL -2021-43054
2022-01-07 00:13:00
prion
prion
Privilege escalation
2022-01-11 19:15:00
cvelist
cvelist
CVE-2021-43054 TIBCO eFTL Token Generation Vulnerability
2022-01-11 00:00:00