Privilege escalation

2022-08-0918:15:00

PRIOn knowledge base

www.prio-n.com

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.9%

JSON

The ftlserver component of TIBCO Software Inc.'s TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, TIBCO FTL - Enterprise Edition, and TIBCO FTL - Enterprise Edition contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a privilege escalation on the affected ftlserver. Affected releases are TIBCO Software Inc.'s TIBCO FTL - Community Edition: versions 6.0.0 through 6.8.0, TIBCO FTL - Developer Edition: versions 6.0.1 through 6.8.0, TIBCO FTL - Enterprise Edition: versions 6.0.0 through 6.7.3, and TIBCO FTL - Enterprise Edition: version 6.8.0.

CPENameOperatorVersion
ftlge6.0.0
ftlle6.8.0
ftlge6.0.1
ftlle6.8.0
ftlge6.0.0
ftlle6.7.3
ftleq6.8.0

Name	Operator	Version
ftl	ge	6.0.0
ftl	le	6.8.0
ftl	ge	6.0.1
ftl	le	6.8.0
ftl	ge	6.0.0
ftl	le	6.7.3
ftl	eq	6.8.0

References

www.tibco.com/services/support/advisories

www.tibco.com/support/advisories/2022/08/tibco-security-advisory-august-9-2022-tibco-ftl-cve-2022-30573