Vulnerability in Tibco Spotfire_statistics_services
CVE-2018-12410
The web server component of TIBCO Software Inc's Spotfire Statistics Services contains multiple vulnerabilities that may allow the remote execution of code. Without needing to authenticate, an attacker may be able to remotely execute code…
EPSS: 0.040 (89.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Tibco Spotfire_statistics_services
- Tibco Software Inc. Spotfire Statistics Services — versions unspecified
References
- security@tibco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
- security@tibco.com (x_refsource_CONFIRM, Third Party Advisory)
Frequently asked questions
- What is CVE-2018-12410?
- CVE-2018-12410 is a critical-severity vulnerability in Tibco Spotfire_statistics_services. CVSS score: 9.8/10. Published 2018-10-10.
- How severe is CVE-2018-12410?
- Critical severity. CVSS v3 base score is 9.8 out of 10.