CVE-2018-12411 TIBCO ActiveSpaces Administrative Daemon Vulnerable to CSRF Attacks

🗓️ 07 Nov 2018 00:00:00Reported by tibcoType

TIBCO ActiveSpaces admin daemon CSRF vulnerability CVE-2018-1241

Reporter	Title	Published	Views	Family All 7
CNVD	TIBCO ActiveSpaces administrative daemon component cross-site request forgery vulnerability	8 Nov 201800:00	–	cnvd
CVE	CVE-2018-12411	7 Nov 201800:00	–	cve
EUVD	EUVD-2018-4385	7 Oct 202500:30	–	euvd
NVD	CVE-2018-12411	6 Nov 201823:29	–	nvd
Prion	Cross site request forgery (csrf)	6 Nov 201823:29	–	prion
Tibco	TIBCO Security Advisory: November 6, 2018 - TIBCOActiveSpaces	30 Oct 201818:19	–	tibco
Tibco	TIBCO Security Advisory: November 6, 2018 - TIBCOActiveSpaces	30 Oct 201818:19	–	tibco

[
  {
    "product": "TIBCO ActiveSpaces - Community Edition",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "3.3.0"
      },
      {
        "status": "affected",
        "version": "3.4.0"
      },
      {
        "status": "affected",
        "version": "3.5.0"
      }
    ]
  },
  {
    "product": "TIBCO ActiveSpaces - Developer Edition",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "3.0.0"
      },
      {
        "status": "affected",
        "version": "3.1.0"
      },
      {
        "status": "affected",
        "version": "3.3.0"
      },
      {
        "status": "affected",
        "version": "3.4.0"
      },
      {
        "status": "affected",
        "version": "3.5.0"
      }
    ]
  },
  {
    "product": "TIBCO ActiveSpaces - Enterprise Edition",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "3.0.0"
      },
      {
        "status": "affected",
        "version": "3.1.0"
      },
      {
        "status": "affected",
        "version": "3.2.0"
      },
      {
        "status": "affected",
        "version": "3.3.0"
      },
      {
        "status": "affected",
        "version": "3.4.0"
      },
      {
        "status": "affected",
        "version": "3.5.0"
      }
    ]
  }
]

Source	Link
tibco	www.tibco.com/services/support/advisories
tibco	www.tibco.com/support/advisories/2018/11/tibco-security-advisory-november-6-2018-tibco-activespaces
securityfocus	www.securityfocus.com/bid/105869

09 Nov 2018 10:57Current

8.9High risk

Vulners AI Score8.9

CVSS 37.5

EPSS0.00127