CVE-2018-12414

🗓️ 07 Nov 2018 00:00:00Reported by tibcoType

The Rendezvous components of TIBCO Software Inc.'s TIBCO Rendezvous, TIBCO Rendezvous Developer Edition, TIBCO Rendezvous for z/Linux, TIBCO Rendezvous for z/OS, TIBCO Rendezvous Network Server, TIBCO Substation ES before 8.4.5, 1.1.2, and 2.12.2 may allow CSRF attacks

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerabilities of the Rendezvous Routing Daemon (rvrd), Rendezvous Secure Routing Daemon (rvrsd), Rendezvous Secure Daemon (rvsd), Rendezvous Cache (rvcache), and Rendezvous Daemon Manager (rvdm) – platforms for high-speed data distribution by TIBCO Rendezvous – allow attackers to gain unauthorized access to protected information.	12 Apr 201900:00	–	bdu_fstec
CNVD	TIBCO Rendezvous Cross-Site Request Forgery Vulnerability	8 Nov 201800:00	–	cnvd
Cvelist	CVE-2018-12414 TIBCO Rendezvous Vulnerable to CSRF Attacks	7 Nov 201800:00	–	cvelist
EUVD	EUVD-2018-4388	7 Oct 202500:30	–	euvd
NVD	CVE-2018-12414	6 Nov 201823:29	–	nvd
OSV	CVE-2018-12414	6 Nov 201823:29	–	osv
Prion	Cross site request forgery (csrf)	6 Nov 201823:29	–	prion
Tibco	TIBCO Security Advisory: November 6, 2018 - TIBCORendezvous	31 Oct 201820:35	–	tibco

NVD

Node

tibco rendezvousRange≤8.4.5

tibco rendezvousRange≤8.4.5developer

tibco rendezvous_for_z/linuxRange≤8.4.5

tibco rendezvous_for_z/osRange≤8.4.5

tibco rendezvous_network_serverRange≤1.1.2

tibco substation_esRange≤2.12.0

[
  {
    "product": "TIBCO Rendezvous",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "8.4.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Rendezvous Developer Edition",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "8.4.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Rendezvous for z/Linux",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "8.4.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Rendezvous for z/OS",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "8.4.5",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Rendezvous Network Server",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "1.1.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Substation ES",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "2.12.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
tibco	www.tibco.com/support/advisories/2018/11/tibco-security-advisory-november-6-2018-tibco-rendezvous
tibco	www.tibco.com/services/support/advisories
securityfocus	www.securityfocus.com/bid/105871

17 Jun 2026 01:37Current

8.5High risk

Vulners AI Score8.5

CVSS 26.8

CVSS 37.5 - 8.8

EPSS0.00668

CWE-352