The Engine in TIBCO Spotfire Web Player 3.3.x prior to 3.3.3, 4.0.x prior to 4.0.3, 4.5.x prior to 4.5.1, and 5.0.x prior to 5.0.1 does not properly implement access control, which allows remote malicious users to obtain sensitive information or modify data via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tibco spotfire web player 3.3 |
||
tibco spotfire web player 3.3.2 |
||
tibco spotfire web player 4.0.1 |
||
tibco spotfire web player 4.0.2 |
||
tibco spotfire web player 4.0 |
||
tibco spotfire web player 4.5.0 |
||
tibco spotfire web player 5.0.0 |