CVE-2014-2075

EUVD-2014-2115
TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary commands via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
tibcoenterprise_administrator
1.0.0
tibcoenterprise_administrator_sdk
1.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt