3 matches found
CVE-2021-35497
CVE-2021-35497 affects TIBCO FTL/ActiveSpaces components (Community, Developer, Enterprise) and their Docker images. The issue is a trust-management flaw that could let a non-administrative, authenticated FTL user cause the system to create illegitimate X.509 certificates, enabling MITM attacks o...
CVE-2021-28824
CVE-2021-28824 affects TIBCO ActiveSpaces Windows Platform Installation in Community/Developer/Enterprise Editions 4.5.0 and below. The root cause is a lack of access restrictions on certain installation files/folders, enabling a low-privilege, locally authenticated attacker to insert malicious s...
CVE-2018-12411
The CVE-2018-12411 issue affects TIBCO ActiveSpaces Administrative Daemon (tibdgadmind) across Community, Developer, and Enterprise Editions. The root cause is a cross-site request forgery (CSRF) vulnerability that could enable an attacker to gain administrative access, including actions like del...