CVE-2023-29268

The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s...

CVE-2024-3331

Vulnerability in Spotfire Spotfire Enterprise Runtime for R - Server Edition, Spotfire Spotfire Statistics Services, Spotfire Spotfire Analyst, Spotfire Spotfire Desktop, Spotfire Spotfire Server allows The impact of this vulnerability depends on the privileges of the user running the affected...

CVE-2024-3331

CVE-2024-3331 affects TIBCO Spotfire products: Enterprise Runtime for R - Server Edition (1.12.7–1.20.0), Statistics Services (12.0.7–12.3.1, 14.0.0–14.3.0), Analyst (12.0.9–12.5.0, 14.0.0–14.3.0), Desktop (14.0–14.3.0), and Server (12.0.10–12.5.0, 14.0.0–14.3.0). The issue is described as an NTL...

CVE-2024-3331 Spotfire: NTLM token leakage

Vulnerability in Spotfire Spotfire Enterprise Runtime for R - Server Edition, Spotfire Spotfire Statistics Services, Spotfire Spotfire Analyst, Spotfire Spotfire Desktop, Spotfire Spotfire Server allows The impact of this vulnerability depends on the privileges of the user running the affected...

CVE-2024-3331 Spotfire: NTLM token leakage

Vulnerability in Spotfire Spotfire Enterprise Runtime for R - Server Edition, Spotfire Spotfire Statistics Services, Spotfire Spotfire Analyst, Spotfire Spotfire Desktop, Spotfire Spotfire Server allows The impact of this vulnerability depends on the privileges of the user running the affected...

Multiple TIBCO Software Products Security Vulnerabilities

TIBCO Software Spotfire Server and others are products of TIBCO Software, Inc. TIBCO Software Spotfire Server is a platform for integrating, running and managing organizations based on TIBCO Spotfire a data analysis and mining tool.TIBCO Software Spotfire Statistics Services is a comprehensive...

Design/Logic Flaw

The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s...

CVE-2023-29268

The CVE-2023-29268 issue affects the Splus Server component of TIBCO Spotfire Statistics Services. An unauthenticated remote attacker can upload or modify arbitrary files inside the web server directory. Affected releases include Spotfire Statistics Services versions 11.4.10 and below, 11.5.0, 11...

TIBCO Software Spotfire Statistics Services 代码问题漏洞

TIBCO Software Spotfire Statistics Services is a comprehensive library of statistics and data algorithms based on the TERR engine or other engines from TIBCO Software, USA. A security vulnerability exists in TIBCO Software Spotfire Statistics Services, which originates in the Splus Server compone...

CVE-2021-23275

The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Server, TIBCO Spotfi...

CVE-2021-28830 TIBCO Spotfire Windows Platform Artifact Search vulnerability

The TIBCO Spotfire Server and TIBCO Enterprise Runtime for R components of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace...

CVE-2021-23275 TIBCO Spotfire Windows Platform Installation vulnerability

The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Server, TIBCO Spotfi...

PT-2019-18234 · F5 · F5 Big-Iq

Name of the Vulnerable Software and Affected Versions: F5 BIG-IQ versions 6.0.0 through 6.1.0 Description: The issue concerns a lack of authentication and Transport Layer Security TLS in services for statistics. This means that these services can be accessed without proper verification and...

CVE-2019-11204

The web interface component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that might theoretically allow an authenticated user to access sensitive information needed by the Spotfire Statistics Services server. The sensitive information that might be affected...

Design/Logic Flaw

The web interface component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that might theoretically allow an authenticated user to access sensitive information needed by the Spotfire Statistics Services server. The sensitive information that might be affected...

CVE-2019-11204

The CVE-2019-11204 entry concerns the web interface component of TIBCO Spotfire Statistics Services. Affected releases are Spotfire Statistics Services up to 7.11.1 and 10.0.0. The vulnerability could allow an authenticated user to access sensitive information (e.g., database, JMX, LDAP, Windows ...

CVE-2019-11204 TIBCO Spotfire Statistics Services Exposes Sensitive Files

The web interface component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that might theoretically allow an authenticated user to access sensitive information needed by the Spotfire Statistics Services server. The sensitive information that might be affected...

PT-2019-12182 · Tibco · Tibco Spotfire Statistics Services

Name of the Vulnerable Software and Affected Versions: TIBCO Spotfire Statistics Services versions up to and including 7.11.1 TIBCO Spotfire Statistics Services version 10.0.0 Description: The web interface component of TIBCO Spotfire Statistics Services contains an issue that could allow an...

TIBCO Spotfire Statistics Services Detection (HTTP)

HTTP based detection of TIBCO Spotfire Statistics Services. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-12410

The web server component of TIBCO Software Inc's Spotfire Statistics Services contains multiple vulnerabilities that may allow the remote execution of code. Without needing to authenticate, an attacker may be able to remotely execute code with the permissions of the system account used to run the...