Lucene search

[email protected]NVD:CVE-2010-4495

HistoryDec 17, 2010 - 7:00 p.m.

CVE-2010-4495

2010-12-1719:00:23

[email protected]

web.nvd.nist.gov

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

Unspecified vulnerability in the ActiveMatrix Runtime component in TIBCO ActiveMatrix Service Grid 3.0.0, 3.0.1, and 3.1.0; ActiveMatrix Service Bus 3.0.0 and 3.0.1; ActiveMatrix BusinessWorks Service Engine 5.9.0; ActiveMatrix BPM 1.0.1 and 1.0.2; Silver BPM Service 1.0.1; and Silver CAP Service 1.0.0 allows remote authenticated users to execute arbitrary code via vectors related to JMX connections.

Affected configurations

NVD

Node

tibcoactivematrix_bpmMatch1.0.1

tibcoactivematrix_bpmMatch1.0.2

tibcoactivematrix_businessworks_service_engineMatch5.9.0

tibcoactivematrix_service_busMatch3.0.0

tibcoactivematrix_service_busMatch3.0.1

tibcoactivematrix_service_gridMatch3.0.0

tibcoactivematrix_service_gridMatch3.0.1

tibcoactivematrix_service_gridMatch3.1.0

tibcosilver_bpm_serviceMatch1.0.1

tibcosilver_cap_serviceMatch1.0.0

References

secunia.com/advisories/42640

www.securityfocus.com/bid/45400

www.securitytracker.com/id?1024894

www.tibco.com/multimedia/activematrix_advisory_20101214_tcm8-12728.txt

www.vupen.com/english/advisories/2010/3241

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

7.1 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

Related for NVD:CVE-2010-4495

prion1 cvelist1 cve1 tibco1