Information disclosure in Tibco Spotfire_statistics_services

CVE-2013-2371

The Web API in the Statistics Server in TIBCO Spotfire Statistics Services 3.3.x before 3.3.1, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 allows remote attackers to obtain sensitive information via an unspecified HTTP request.

Vulnerability class: Information Disclosure

EPSS: 0.020 (78.8th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References