CVE-2012-0687 — Sensitive Information Exposure in Activematrix BPM

CWE-200 — Sensitive Information Exposure3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.4%

top 40.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tibco Activematrix BPM Tibco Activematrix Businessworks Tibco Activematrix Businessworks Service Engine +4 more

Timeline

PublishedMar 13

Latest updateMay 17

Description

TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2.x before 2.3.2 and BusinessWorks Service Engine before 5.8.2; TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWorks Service Engine 5.9.x before 5.9.3, and BPM before 1.3.0; TIBCO BusinessEvents Runtime in Enterprise and Inference Editions 3.x before 3.0.3, Standard Edition 4.x before 4.0.2, and Standard Edition and Express 5…

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages7 packages

▶NVDtibco/silver_fabric_activematrix_service_grid_distribution3.1.3, 5.9.2+1

▶NVDtibco/activematrix_businessworks_service_engine5.8.1+10

▶NVDtibco/activematrix_service_grid12 versions+11

▶NVDtibco/activematrix_service_bus10 versions+9

▶NVDtibco/activematrix_businessworks5.9.2

🔴Vulnerability Details

GHSA

GHSA-gvqw-c58j-q64r: TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2↗2022-05-17

▶

CVEList

CVE-2012-0687: TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2↗2012-03-13

▶