Lucene search
MitreCVE-2013-2371HistoryMar 15, 2013 - 10:55 p.m.
CVE-2013-2371
2013-03-1522:55:00
CWE-200
mitre
web.nvd.nist.gov
17
cve-2013-2371
web api
statistics server
tibco spotfire
information security
remote attack
http request
vulnerability
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
70.5%
The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request.
Affected configurations
Node
tibcospotfire_statistics_servicesMatch3.3
Node
tibcospotfire_statistics_servicesMatch4.5.0
Node
tibcospotfire_statistics_servicesMatch5.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tibco | spotfire_statistics_services | 3.3 | cpe:2.3:a:tibco:spotfire_statistics_services:3.3:*:*:*:*:*:*:* |
| tibco | spotfire_statistics_services | 4.5.0 | cpe:2.3:a:tibco:spotfire_statistics_services:4.5.0:*:*:*:*:*:*:* |
| tibco | spotfire_statistics_services | 5.0.0 | cpe:2.3:a:tibco:spotfire_statistics_services:5.0.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2013-2371
2013-03-15 14:00:00
nvd
nvd
CVE-2013-2371
2013-03-15 22:55:00
prion
prion
Cross site request forgery (csrf)
2013-03-15 22:55:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.4
Confidence
Low
EPSS
0.003
Percentile
70.5%
Related for CVE-2013-2371