Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL.
References
Link | Resource |
---|---|
http://www.tibco.com/mk/advisory.jsp | Vendor Advisory |
http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt | Vendor Advisory |
http://www.securitytracker.com/id/1034011 |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Information
Published : 2015-10-28 03:59
Updated : 2016-12-07 10:17
NVD link : CVE-2015-5712
Mitre link : CVE-2015-5712
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
tibco
- spotfire_analytics_platform_for_aws
- spotfire_server