Lucene search

[email protected]CVE-2014-7194

HistoryNov 21, 2014 - 2:59 a.m.

CVE-2014-7194

2014-11-2102:59:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2014-7194

tibco

managed file transfer

internet server

command center

slingshot

vault

sensitive information

data modification

remote attack

7.2 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

74.7%

JSON

TIBCO Managed File Transfer Internet Server before 7.2.4, Managed File Transfer Command Center before 7.2.4, Slingshot before 1.9.3, and Vault before 1.1.1 allow remote attackers to obtain sensitive information or modify data by leveraging agent access.

CPENameOperatorVersion
tibco:managed_file_transfer_internet_servertibco managed file transfer internet serverle7.2.3
tibco:managed_file_transfer_command_centertibco managed file transfer command centerle7.2.3
tibco:slingshottibco slingshotle1.9.2
tibco:vaulttibco vaultle1.1.0

CPE	Name	Operator	Version
tibco:managed_file_transfer_internet_server	tibco managed file transfer internet server	le	7.2.3
tibco:managed_file_transfer_command_center	tibco managed file transfer command center	le	7.2.3
tibco:slingshot	tibco slingshot	le	1.9.2
tibco:vault	tibco vault	le	1.1.0

References

www.tibco.com/assets/blt7454ec3ae638d8c4/mft-advisory-20141029-008.txt

www.tibco.com/mk/advisory.jsp

7.2 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

74.7%

JSON

Related for CVE-2014-7194

cvelist1 tibco1 prion1