Lucene search

[email protected]CVE-2015-5713

HistoryOct 28, 2015 - 10:59 a.m.

CVE-2015-5713

2015-10-2810:59:09

CWE-200

[email protected]

web.nvd.nist.gov

cve-2015-5713

tibco spotfire

security

remote attack

information disclosure

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.3%

JSON

Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote attackers to obtain sensitive log information by visiting an unspecified URL.

Affected configurations

NVD

Node

tibcospotfire_serverMatch5.5.0

tibcospotfire_serverMatch5.5.1

tibcospotfire_serverMatch5.5.2

tibcospotfire_serverMatch5.5.3

tibcospotfire_serverMatch6.0.0

tibcospotfire_serverMatch6.0.1

tibcospotfire_serverMatch6.0.2

tibcospotfire_serverMatch6.0.3

tibcospotfire_serverMatch6.0.4

tibcospotfire_serverMatch6.5.0

tibcospotfire_serverMatch6.5.1

tibcospotfire_serverMatch6.5.2

tibcospotfire_serverMatch6.5.3

tibcospotfire_serverMatch7.0.0

Node

tibcospotfire_analytics_platform_for_awsRange≤7.0.1

CPENameOperatorVersion
tibco:spotfire_servertibco spotfire servereq5.5.0
tibco:spotfire_servertibco spotfire servereq5.5.1
tibco:spotfire_servertibco spotfire servereq5.5.2
tibco:spotfire_servertibco spotfire servereq5.5.3
tibco:spotfire_servertibco spotfire servereq6.0.0
tibco:spotfire_servertibco spotfire servereq6.0.1
tibco:spotfire_servertibco spotfire servereq6.0.2
tibco:spotfire_servertibco spotfire servereq6.0.3
tibco:spotfire_servertibco spotfire servereq6.0.4
tibco:spotfire_servertibco spotfire servereq6.5.0

CPE	Name	Operator	Version
tibco:spotfire_server	tibco spotfire server	eq	5.5.0
tibco:spotfire_server	tibco spotfire server	eq	5.5.1
tibco:spotfire_server	tibco spotfire server	eq	5.5.2
tibco:spotfire_server	tibco spotfire server	eq	5.5.3
tibco:spotfire_server	tibco spotfire server	eq	6.0.0
tibco:spotfire_server	tibco spotfire server	eq	6.0.1
tibco:spotfire_server	tibco spotfire server	eq	6.0.2
tibco:spotfire_server	tibco spotfire server	eq	6.0.3
tibco:spotfire_server	tibco spotfire server	eq	6.0.4
tibco:spotfire_server	tibco spotfire server	eq	6.5.0

Rows per page:

1-10 of 141

References

www.securitytracker.com/id/1034011

www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt

www.tibco.com/mk/advisory.jsp

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.3%

JSON

Related for CVE-2015-5713

prion1 cvelist1 nvd1