Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
tibco vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2007-4158
Memory leak in TIBCO Rendezvous (RV) daemon (rvd) 7.5.2, 7.5.3 and 7.5.4 allows remote malicious users to cause a denial of service (memory consumption) via a packet with a length field of zero, a different vulnerability than CVE-2006-2830.
Tibco Rendezvous 7.5.4
Tibco Rendezvous 7.5.2
Tibco Rendezvous 7.5.3
445
VMScore
CVE-2012-0689
The server in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x prior to 3.1.5, BusinessWorks Service Engine 5.9.x prior to 5.9.3, and BPM prior to 1.3.0 allows remote malicious users to discover cred...
Tibco Activematrix Service Grid 3.1.0
Tibco Activematrix Service Bus 3.0.1
Tibco Silver Fabric Activematrix Service Grid Distribution 3.1.3
Tibco Activematrix Service Grid 3.0.0
Tibco Activematrix Service Grid 3.0.1
Tibco Activematrix Bpm 1.0.1
Tibco Activematrix Bpm 1.0.2
Tibco Activematrix Service Bus 3.0.0
Tibco Activematrix Businessworks Service Engine 5.9.0
605
VMScore
CVE-2020-9410
The report generator component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Server for ActiveMatrix BPM contains a v...
Tibco Jasperreports Library 7.2.0
Tibco Jasperreports Server
Tibco Jasperreports Library
Tibco Jasperreports Library 7.2.1
Tibco Jasperreports Library 7.3.0
Tibco Jasperreports Library 7.5.0
Tibco Jasperreports Server 7.2.0
Tibco Jasperreports Server 7.5.0
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
312
VMScore
CVE-2017-5536
The GridServer Broker, and GridServer Director components of TIBCO Software Inc. TIBCO DataSynapse GridServer Manager contain vulnerabilities which may allow an authenticated user to perform cross-site scripting (XSS). In addition, an authenticated user could be a victim of a cro...
Tibco Datasynapse Gridserver Manager 6.0.0
Tibco Datasynapse Gridserver Manager 6.0.1
Tibco Datasynapse Gridserver Manager 6.0.2
Tibco Datasynapse Gridserver Manager 6.1.0
Tibco Datasynapse Gridserver Manager
Tibco Datasynapse Gridserver Manager 6.1.1
Tibco Datasynapse Gridserver Manager 6.2.0
383
VMScore
CVE-2017-5535
The GridServer Broker, GridServer Driver, and GridServer Engine components of TIBCO Software Inc. TIBCO DataSynapse GridServer Manager contain vulnerabilities related to both the improper use of encryption mechanisms and the use of weak ciphers. A malicious actor could theoretica...
Tibco Datasynapse Gridserver Manager 6.0.0
Tibco Datasynapse Gridserver Manager 6.0.1
Tibco Datasynapse Gridserver Manager 6.0.2
Tibco Datasynapse Gridserver Manager 6.1.0
Tibco Datasynapse Gridserver Manager 6.2.0
Tibco Datasynapse Gridserver Manager
Tibco Datasynapse Gridserver Manager 6.1.1
383
VMScore
CVE-2019-11205
The web server component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains vulnerabilities that theoretically allow reflected cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc.'s...
Tibco Spotfire Analytics Platform For Aws 7.14.0
Tibco Spotfire Server 10.0.1
Tibco Spotfire Server 10.1.0
Tibco Spotfire Analytics Platform For Aws 7.14.1
Tibco Spotfire Analytics Platform For Aws 10.0.0
Tibco Spotfire Server 10.2.0
Tibco Spotfire Analytics Platform For Aws 10.2.0
Tibco Spotfire Server 7.14.0
Tibco Spotfire Server 10.0.0
Tibco Spotfire Analytics Platform For Aws 10.0.1
Tibco Spotfire Analytics Platform For Aws 10.1.0
383
VMScore
CVE-2013-2372
Cross-site scripting (XSS) vulnerability in the Engine in TIBCO Spotfire Web Player 3.3.x prior to 3.3.3, 4.0.x prior to 4.0.3, 4.5.x prior to 4.5.1, and 5.0.x prior to 5.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Tibco Spotfire Web Player 3.3
Tibco Spotfire Web Player 3.3.2
Tibco Spotfire Web Player 4.0
Tibco Spotfire Web Player 4.0.1
Tibco Spotfire Web Player 4.0.2
Tibco Spotfire Web Player 4.5.0
Tibco Spotfire Web Player 5.0.0
570
VMScore
CVE-2013-2373
The Engine in TIBCO Spotfire Web Player 3.3.x prior to 3.3.3, 4.0.x prior to 4.0.3, 4.5.x prior to 4.5.1, and 5.0.x prior to 5.0.1 does not properly implement access control, which allows remote malicious users to obtain sensitive information or modify data via unspecified vector...
Tibco Spotfire Web Player 3.3
Tibco Spotfire Web Player 3.3.2
Tibco Spotfire Web Player 4.0.1
Tibco Spotfire Web Player 4.0.2
Tibco Spotfire Web Player 4.0
Tibco Spotfire Web Player 4.5.0
Tibco Spotfire Web Player 5.0.0
570
VMScore
CVE-2014-7194
TIBCO Managed File Transfer Internet Server prior to 7.2.4, Managed File Transfer Command Center prior to 7.2.4, Slingshot prior to 1.9.3, and Vault prior to 1.1.1 allow remote malicious users to obtain sensitive information or modify data by leveraging agent access.
Tibco Managed File Transfer Internet Server
Tibco Managed File Transfer Command Center
Tibco Slingshot
Tibco Vault
356
VMScore
CVE-2015-5711
TIBCO Managed File Transfer Internet Server prior to 7.2.5, Managed File Transfer Command Center prior to 7.2.5, Slingshot prior to 1.9.4, and Vault prior to 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request.
Tibco Managed File Transfer Internet Server
Tibco Vault
Tibco Managed File Transfer Command Center
Tibco Slingshot
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »