CVE-2014-2544 — Analyst vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.2%

top 21.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tibco Analyst Tibco Automation Services Tibco Deployment KIT +4 more

Timeline

PublishedApr 10

Latest updateMay 17

Description

Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire A…

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages7 packages

▶NVDtibco/spotfire_server3.3.3+6

▶NVDtibco/spotfire_professional4.0.3+6

▶NVDtibco/desktop6.0.0

▶NVDtibco/web_player4.0.3+6

▶NVDtibco/automation_services4.0.3+6

🔴Vulnerability Details

GHSA

GHSA-c8rv-f2vp-3ch5: Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3↗2022-05-17

▶

CVEList

CVE-2014-2544: Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3↗2014-04-09

▶