CVE-2023-26220 TIBCO Spotfire Stored Cross-site Scripting (XSS) vulnerability

🗓️ 10 Oct 2023 22:06:36Reported by tibcoType

TIBCO Spotfire Library XSS vulnerability in Analyst and Serve

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-26220	11 Oct 202302:16	–	circl
CNNVD	TIBCO Software Spotfire Analyst Cross-Site Scripting Vulnerability	10 Oct 202300:00	–	cnnvd
CVE	CVE-2023-26220	10 Oct 202322:06	–	cve
EUVD	EUVD-2023-30045	3 Oct 202520:07	–	euvd
NVD	CVE-2023-26220	10 Oct 202323:15	–	nvd
Prion	Cross site scripting	10 Oct 202323:15	–	prion
Positive Technologies	PT-2023-20548 · Tibco · Tibco Spotfire Analyst +1	10 Oct 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-26220	23 May 202504:39	–	redhatcve
Vulnrichment	CVE-2023-26220 TIBCO Spotfire Stored Cross-site Scripting (XSS) vulnerability	10 Oct 202322:06	–	vulnrichment

[
  {
    "defaultStatus": "unknown",
    "product": "Spotfire Analyst",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "11.4.7",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "11.5.0"
      },
      {
        "status": "affected",
        "version": "11.6.0"
      },
      {
        "status": "affected",
        "version": "11.7.0"
      },
      {
        "status": "affected",
        "version": "11.8.0"
      },
      {
        "status": "affected",
        "version": "12.0.0"
      },
      {
        "status": "affected",
        "version": "12.0.1"
      },
      {
        "status": "affected",
        "version": "12.0.2"
      },
      {
        "status": "affected",
        "version": "12.0.3"
      },
      {
        "status": "affected",
        "version": "12.0.4"
      },
      {
        "status": "affected",
        "version": "12.1.0"
      },
      {
        "status": "affected",
        "version": "12.1.1"
      }
    ]
  },
  {
    "defaultStatus": "unknown",
    "product": "Spotfire Server",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "11.4.11",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "affected",
        "version": "11.5.0"
      },
      {
        "status": "affected",
        "version": "11.6.0"
      },
      {
        "status": "affected",
        "version": "11.6.1"
      },
      {
        "status": "affected",
        "version": "11.6.2"
      },
      {
        "status": "affected",
        "version": "11.6.3"
      },
      {
        "status": "affected",
        "version": "11.7.0"
      },
      {
        "status": "affected",
        "version": "11.8.0"
      },
      {
        "status": "affected",
        "version": "11.8.1"
      },
      {
        "status": "affected",
        "version": "12.0.0"
      },
      {
        "status": "affected",
        "version": "12.0.1"
      },
      {
        "status": "affected",
        "version": "12.0.2"
      },
      {
        "status": "affected",
        "version": "12.0.3"
      },
      {
        "status": "affected",
        "version": "12.0.4"
      },
      {
        "status": "affected",
        "version": "12.0.5"
      },
      {
        "status": "affected",
        "version": "12.1.0"
      },
      {
        "status": "affected",
        "version": "12.1.1"
      }
    ]
  }
]

Source	Link
tibco	www.tibco.com/services/support/advisories

10 Oct 2023 22:06Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.15.4

EPSS0.003

CWE-79