Spotfire Analytics Server@10.0.0 Security Vulnerabilities and Issues — Spotfire Analytics Server@10.0.0 CVE List

Lucene search

TibcoSpotfire Analytics Server10.0.0

4 matches found

CVE•added 2012/03/13 10:55 a.m.•40 views

CVE-2012-0690

TIBCO Spotfire Web Application, Web Player Application, Automation Services Application, and Analytics Client Application in Spotfire Analytics Server before 10.1.2; Server before 3.3.3; and Web Player, Automation Services, and Professional before 4.0.2 allow remote attackers to obtain sensitive in...

5CVSS6.2AI score0.00218EPSS

CVE•added 2011/09/02 4:55 p.m.•38 views

CVE-2011-3132

Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00277EPSS

CVE•added 2011/09/02 4:55 p.m.•36 views

CVE-2011-3134

Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to modify data or obtain sensitive information via a crafted URL.

7.5CVSS6.4AI score0.00712EPSS

CVE•added 2011/09/02 4:55 p.m.•34 views

CVE-2011-3133

Session fixation vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to hijack web sessions via unspecified vectors.

4.3CVSS6.9AI score0.00377EPSS