CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2014-2075
https://notcve.org/view.php?id=CVE-2014-2075
TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary commands via unspecified vectors. TIBCO Enterprise Administrator 1.0.0 y Enterprise Administrator SDK 1.0.0 no fuerza debidamente los requisitos de autenticación administrativa, lo que permite a atacantes remotos ejecutar comandos arbitrarios a través de vectores no especificados. • http://www.tibco.com/mk/advisory.jsp http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt • CWE-287: Improper Authentication •
CVSS: 6.0EPSS: 0%CPEs: 2EXPL: 0CVE-2010-0683
https://notcve.org/view.php?id=CVE-2010-0683
Unspecified vulnerability in TIBRepoServer5.jar in TIBCO Administrator 5.4.0 through 5.6.0, when JMS transport is used, allows remote authenticated users to execute arbitrary code on all domain nodes via vectors related to leveraging administrative credentials. Vulnerabilidad sin especificar en TIBRepoServer5.jar en TIBCO Administrator desde v5.4.0 hasta v5.6.0, cuando se utiliza JMS transport, permite a usuarios remotos autenticados ejecutar código arbitrario en todos los nodos de dominio a través de vectores relacionados con las credenciales administrativas. • http://secunia.com/advisories/38732 http://www.securityfocus.com/bid/38396 http://www.tibco.com/multimedia/security_advisory_administrator_tcm8-10685.txt http://www.tibco.com/services/support/advisories/adminstrator-advisory_20100223.jsp http://www.vupen.com/english/advisories/2010/0463 •