Vulnerability in Tibco Spotfire_analyst
CVE-2019-17334
The Visualizations component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Deployment Kit, TIBCO Spotfire Desktop, and TIBCO Spotfire Desktop Language Packs contains…
EPSS: 0.010 (57.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.0 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Tibco Spotfire_analyst — versions 7.12.0, 7.13.0, 7.14.0
- Tibco Spotfire_analytics_platform_for_aws — versions 10.6.0
- Tibco Spotfire_deployment_kit
- Tibco Spotfire_desktop — versions 7.12.0, 7.13.0, 7.14.0
- Tibco Spotfire_desktop_language_packs
- Tibco Software Inc. Spotfire Analyst — versions unspecified, 7.12.0, 7.13.0
- Tibco Software Inc. Spotfire Analytics Platform For Aws Marketplace — versions 10.6.0
- Tibco Software Inc. Spotfire Deployment Kit — versions unspecified
- Tibco Software Inc. Spotfire Desktop — versions unspecified, 7.12.0, 7.13.0
- Tibco Software Inc. Spotfire Desktop Language Packs — versions unspecified
Weakness classification (CWE)
References
- security@tibco.com (x_refsource_MISC, Vendor Advisory)
- security@tibco.com (x_refsource_MISC, Vendor Advisory)
Frequently asked questions
- What is CVE-2019-17334?
- CVE-2019-17334 is a high-severity vulnerability in Tibco Spotfire_analyst, classified under Incorrect Default Permissions. CVSS score: 8.0/10. Published 2019-12-17.
- How severe is CVE-2019-17334?
- High severity. CVSS v3 base score is 8.0 out of 10.