The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid prior to 2.3.1, ActiveMatrix Service Bus prior to 2.3.1, ActiveMatrix BusinessWorks Service Engine prior to 5.8.1, and ActiveMatrix Service Performance Manager prior to 1.3.2 do not properly handle JMX connections, which allows remote malicious users to execute arbitrary code, obtain sensitive information, or cause a denial of service via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tibco activematrix service bus |
||
tibco activematrix businessworks service engine |
||
tibco activematrix service performance manager |
||
tibco activematrix service grid |