Design/Logic Flaw

2019-01-1622:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.3%

JSON

The Spotfire Library component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains a vulnerability that might theoretically fail to restrict users with read-only access from modifying files stored in the Spotfire Library, only when the Spotfire Library is configured to use external storage. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace versions up to and including 10.0.0, and TIBCO Spotfire Server versions up to and including 7.10.1; 7.11.0; 7.11.1; 7.12.0; 7.13.0; 7.14.0; 10.0.0.

CPENameOperatorVersion
spotfire_analytics_platform_for_awsle10.0.0
spotfire_servereq7.11.0
spotfire_servereq7.12.0
spotfire_serverle7.10.1
spotfire_servereq7.11.1
spotfire_servereq7.13.0
spotfire_servereq7.14.0
spotfire_servereq10.0.0

Name	Operator	Version
spotfire_analytics_platform_for_aws	le	10.0.0
spotfire_server	eq	7.11.0
spotfire_server	eq	7.12.0
spotfire_server	le	7.10.1
spotfire_server	eq	7.11.1
spotfire_server	eq	7.13.0
spotfire_server	eq	7.14.0
spotfire_server	eq	10.0.0