CVE-2021-28827Cross-site Scripting in Software INC Tibco Administrator Enterprise Edition

CWE-79Cross-site Scripting3 documents3 sources
Severity
9.6CRITICALNVD
EPSS
0.6%
top 30.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Tibco Software INC Tibco Administrator Enterprise EditionTibco Software INC Tibco Administrator Enterprise Edition Distribution FOR Tibco Silver FabricTibco Software INC Tibco Administrator Enterprise Edition FOR Z Linux+4 more
Timeline
PublishedApr 20
Latest updateMay 24

Description

The Administration GUI component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric, TIBCO Administrator - Enterprise Edition for z/Linux, TIBCO Administrator - Enterprise Edition for z/Linux, TIBCO Runtime Agent, TIBCO Runtime Agent, TIBCO Runtime Agent for z/Linux, and TIBCO Runtime

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HExploitability: 2.8 | Impact: 6.0

Affected Packages7 packages

CVEListV5tibco_software_inc/tibco_runtime_agent_for_z_linuxunspecified5.10.2+2
CVEListV5tibco_software_inc/tibco_runtime_agentunspecified5.10.2+2

🔴Vulnerability Details

2
GHSA
GHSA-qx9w-h9hj-hrp6: The Administration GUI component of TIBCO Software Inc2022-05-24
CVEList
TIBCO Administrator Stored Cross Site Scripting vulnerability2021-04-20
CVE-2021-28827 — Cross-site Scripting | cvebase