CVE-2013-2371

EUVD-2013-2317
The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
Affected Products (NVD)
VendorProductVersion
tibcospotfire_statistics_services
3.3
tibcospotfire_statistics_services
4.5.0
tibcospotfire_statistics_services
5.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/spotfire-statistics-services-advisory-2013-03-12_tcm8-18479.txt
http://www.tibco.com/services/support/advisories/spotfire-advisory_20130313.jsp
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/spotfire-statistics-services-advisory-2013-03-12_tcm8-18479.txt
http://www.tibco.com/services/support/advisories/spotfire-advisory_20130313.jsp