CVE-2015-5712

Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 54%
VendorProductVersion
tibcospotfire_analytics_platform_for_aws
𝑥
≤ 7.0.1
tibcospotfire_server
5.0.0
tibcospotfire_server
5.0.1
tibcospotfire_server
5.0.2
tibcospotfire_server
5.5.0
tibcospotfire_server
5.5.1
tibcospotfire_server
5.5.2
tibcospotfire_server
5.5.3
tibcospotfire_server
6.0.0
tibcospotfire_server
6.0.1
tibcospotfire_server
6.0.2
tibcospotfire_server
6.0.3
tibcospotfire_server
6.0.4
tibcospotfire_server
6.5.0
tibcospotfire_server
6.5.1
tibcospotfire_server
6.5.2
tibcospotfire_server
6.5.3
tibcospotfire_server
7.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securitytracker.com/id/1034011
http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt
http://www.tibco.com/mk/advisory.jsp
http://www.securitytracker.com/id/1034011
http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt
http://www.tibco.com/mk/advisory.jsp