CRITICAL✓ PATCH🇬🇧 English

CVE-2021-35498

CVSS 9.8v3.1pub. 2021-10-13upd. 2024-11-21

The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, and TIBCO Product and Service Catalog powered by TIBCO EBX contains a vulnerability that under certain specific conditions allows an attacker to enter a password other than the legitimate password and it will be accepted as valid. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.8.123 and below, TIBCO EBX: versions 5.9.3, 5.9.4, 5.9.5, 5.9.6, 5.9.7, 5.9.8, 5.9.9, 5.9.10, 5.9.11, 5.9.12, 5.9.13, and 5.9.14, TIBCO EBX: versions 6.0.0 and 6.0.1, and TIBCO Product and Service Catalog powered by TIBCO EBX: version 1.0.0.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tibco Ebx

    APP
    Tibco
    < 5.8.1245.9.3 – 5.9.15 (bez)6.0.0 – 6.0.2 (bez)
  • Tibco Product And Service Catalog Powered By Tibco Ebx

    APP
    Tibco
    1.0.0
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2019-17330CRITICAL9.6ten sam produkt

The Web server component of TIBCO Software Inc.'s TIBCO EBX contains multiple vulnerabilities that theoretical...

CVE-2023-26222HIGH8.7ten sam produkt

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered...

CVE-2022-41565HIGH8.7ten sam produkt

The Web Application component of TIBCO Software Inc.'s TIBCO EBX and TIBCO Product and Service Catalog powered...

CVE-2022-30577HIGH8.0ten sam produkt

The Web Server component of TIBCO Software Inc.'s TIBCO EBX contains an easily exploitable vulnerability that ...

CVE-2022-22769HIGH8.0ten sam produkt

The Web server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, TIBCO EBX Add-ons, TIBCO EB...