Lucene search
+L

229 matches found

redhatcve
redhatcve
added 2025/05/23 5:38 a.m.7 views

CVE-2023-26217

The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...

8.8CVSS8AI score0.00608EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:39 a.m.9 views

CVE-2023-26215

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that allows an attacker with low-privileged application access to read system files that are accessible to the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and...

7.7CVSS6.7AI score0.00657EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:38 a.m.14 views

CVE-2023-26216

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an exploitable vulnerability that allows an attacker to upload files to a directory accessible by the web server. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.5.16 and below...

9.1CVSS6.8AI score0.00755EPSS
Exploits0References1
cvelist
cvelist
added 2024/06/13 6:31 a.m.30 views

CVE-2024-4576 TIBCO EBX File Inclusion Vulnerability

The component listed above contains a vulnerability that allows an attacker to traverse directories and access sensitive files, leading to unauthorized disclosure of system configuration and potentially sensitive information...

0.00474EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/06/13 12:0 a.m.6 views

PT-2024-31756 · Tibco · Ebx

Name of the Vulnerable Software and Affected Versions: Component affected versions not specified Description: The issue allows an attacker to traverse directories and access sensitive files, leading to unauthorized disclosure of system configuration and potentially sensitive information...

5.3CVSS6.7AI score0.00474EPSS
Exploits0References4
cnnvd
cnnvd
added 2024/06/13 12:0 a.m.7 views

TIBCO Software EBX Security Vulnerability

TIBCO Software EBX is a software from TIBCO Software, Inc. that supports integration to manage enterprise data assets. A security vulnerability exists in TIBCO Software EBX versions 5.9.25 and earlier and 6.1.3HF2 and earlier, which stems from a directory traversal issue that allows an attacker t...

5.3CVSS6.6AI score0.00474EPSS
Exploits0References2
tibco
tibco
added 2024/06/11 4:55 p.m.40 views

TIBCO Security Advisory: June 11, 2024 - TIBCO EBX - CVE-2024-4576

TIBCO EBX File Inclusion Vulnerability Original release date: June 11, 2024 Last revised: June 12, 2024 CVE-2024-4576 Source: TIBCO Software Inc. Products Affected TIBCO EBX versions 5.9.25 and below TIBCO EBX versions 6.1.3 HF2 and below Component affected: EBX Add-ons Description The component...

5.3CVSS6.8AI score0.00474EPSS
Exploits0Affected Software1
osv
osv
added 2023/11/14 8:15 p.m.6 views

CVE-2023-26222

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...

5.4CVSS5.9AI score0.00468EPSS
Exploits0References1
cve
cve
added 2023/11/14 7:29 p.m.64 views

CVE-2023-26222

CVE-2023-26222 affects TIBCO EBX Web Application: stored XSS allowing a low-privileged, network-access attacker to execute scripts on the affected system. Affected releases: TIBCO EBX 5.9.22 and below; 6.0.13 and below; TIBCO Product and Service Catalog powered by TIBCO EBX 5.0.0 and below. Impac...

8.7CVSS5.8AI score0.00468EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/11/14 7:29 p.m.16 views

CVE-2023-26222 TIBCO EBX Cross-site Scripting (XXS) Vulnerability

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...

8.7CVSS6AI score0.00468EPSS
Exploits0References1
cvelist
cvelist
added 2023/11/14 7:29 p.m.24 views

CVE-2023-26222 TIBCO EBX Cross-site Scripting (XXS) Vulnerability

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are...

8.7CVSS8.4AI score0.00468EPSS
Exploits0References1
tibco
tibco
added 2023/11/14 4:43 p.m.24 views

TIBCOSecurity Advisory: November 14, 2023 - TIBCO EBX -CVE-2023-26222

TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...

4.9CVSS5.6AI score0.00468EPSS
Exploits0Affected Software2
tibco
tibco
added 2023/11/14 4:43 p.m.30 views

TIBCO Security Advisory: November 14, 2023 - TIBCO EBX-CVE-2023-26222

TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...

8.7CVSS5.1AI score0.00468EPSS
Exploits0Affected Software2
tibco
tibco
added 2023/11/14 4:43 p.m.25 views

TIBCO Security Advisory: November 14, 2023 - TIBCO EBX-CVE-2023-26222

TIBCO EBX Cross-site Scripting XXS Vulnerability Original release date: November 14, 2023 Lastrevised: — CVE-2023-26222 Source: TIBCO SoftwareInc. Products Affected TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX...

4.9CVSS5.7AI score0.00468EPSS
Exploits0Affected Software2
ptsecurity
ptsecurity
added 2023/11/14 12:0 a.m.10 views

PT-2023-20550 · Tibco Software · Tibco Ebx +1

Name of the Vulnerable Software and Affected Versions: TIBCO EBX versions 5.9.22 and below TIBCO EBX versions 6.0.13 and below TIBCO Product and Service Catalog powered by TIBCO EBX versions 5.0.0 and below Description: The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO...

8.7CVSS5.3AI score0.00468EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2023/10/06 12:0 a.m.8 views

The vulnerability of TIBCO EBX asset management software lies in the lack of protective measures for SQL query structures, allowing attackers to execute arbitrary SQL queries.

The vulnerability of TIBCO EBX asset management software lies in the lack of protective measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

9CVSS8AI score0.00608EPSS
Exploits0References2Affected Software1
osv
osv
added 2023/07/19 9:15 p.m.5 views

CVE-2023-26217

The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...

8.8CVSS6AI score0.00608EPSS
Exploits0References1
cve
cve
added 2023/07/19 8:36 p.m.53 views

CVE-2023-26217

The CVE concerns TIBCO EBX Add-ons Data Exchange Add-on, where a low-privilege user with import permissions and network access can trigger arbitrary SQL execution on the EBX server. Affected releases: EBX Add-ons 4.5.17 and below, 5.6.2 and below, and 6.1.0. The underlying issue is a highly explo...

8.8CVSS9AI score0.00608EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2023/07/19 8:36 p.m.23 views

CVE-2023-26217 TIBCO EBX Add-ons SQL Injection Vulnerability

The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. Affected releases a...

8.8CVSS9.2AI score0.00608EPSS
Exploits0References1
cnnvd
cnnvd
added 2023/07/19 12:0 a.m.6 views

TIBCO Software EBX Add-ons SQL注入漏洞

TIBCO Software EBX Add-ons is an add-on from TIBCO Software, Inc. that enhances the functionality of the Tibco Ebx data management platform. A security vulnerability exists in TIBCO EBX Add-ons versions 4.5.17 and earlier, 5.6.2 and earlier, and 6.1.0, which stems from an easily exploitable...

8.8CVSS8.5AI score0.00608EPSS
Exploits0References2
Rows per page
Query Builder