1 results (0.005 seconds)
CVSS: 5.0EPSS: 0%CPEs: 7EXPL: 0
CVSS: 5.0EPSS: 0%CPEs: 7EXPL: 0CVE-2023-26221 – TIBCO Spotfire Insufficiently Protected Credential vulnerability
https://notcve.org/view.php?id=CVE-2023-26221
08 Nov 2023 — The Spotfire Connectors component of TIBCO Software Inc.'s Spotfire Analyst, Spotfire Server, and Spotfire for AWS Marketplace contains an easily exploitable vulnerability that allows a low privileged attacker with read/write access to craft malicious Analyst files. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s Spotfire Analyst: versions 12.3.0, 12.4.0, and 12.5.0, Spotfire Server: versions 12.3.0, 1... • https://www.tibco.com/services/support/advisories • CWE-522: Insufficiently Protected Credentials •