CVE-2015-4554 — Spotfire Analyst vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.5%

top 18.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tibco Spotfire Analyst Tibco Spotfire Automation Services Tibco Spotfire Deployment KIT +6 more

Timeline

PublishedJul 21

Latest updateMay 17

Description

Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Analytics Platform for AWS 6.5 and 7.0.x before 7.0.1; Spotfire Automation Services before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Deployment Kit before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Desktop before 6.5.2 and 7.…

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages9 packages

▶NVDtibco/spotfire_desktop_language_packs7.0.0

▶NVDtibco/spotfire_web_player5.5.1+7

▶NVDtibco/spotfire_desktop6.5.1+1

▶NVDtibco/spotfire_automation_services5.5.1+7

▶NVDtibco/spotfire_analytics_platform6.5, 7.0.0+1

🔴Vulnerability Details

GHSA

GHSA-vmxr-4rf6-8xp4: Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5↗2022-05-17

▶

CVEList

CVE-2015-4554: Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5↗2015-07-21

▶