Tibco Software Inc Tibco Spotfire Statistics Services vulnerabilities

5 known vulnerabilities affecting tibco_software_inc/tibco_spotfire_statistics_services.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3

Vulnerabilities

Page 1 of 1
CVE-2023-29268CRITICALCVSS 9.8≤ 11.4.10v11.5.0+11 more2023-04-26
CVE-2023-29268 [CRITICAL] CWE-434 CVE-2023-29268: The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vu The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Statistics Services: versions 11.4.10 a
cvelistv5nvd
CVE-2021-23275HIGHCVSS 7.8≥ unspecified, ≤ 10.3.0v10.10.0+5 more2021-06-29
CVE-2021-23275 [HIGH] CWE-732 CVE-2021-23275: The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Server, TIBCO Spotfire Server, TIBCO Spotfire Server, TIBCO Spotfire Statisti
cvelistv5nvd
CVE-2021-28830HIGHCVSS 7.8≥ unspecified, ≤ 10.3.0v10.10.0+5 more2021-06-29
CVE-2021-28830 [HIGH] CVE-2021-28830: The TIBCO Spotfire Server and TIBCO Enterprise Runtime for R components of TIBCO Software Inc.'s TIB The TIBCO Spotfire Server and TIBCO Enterprise Runtime for R components of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Server, TIBCO Spotfire Server, TIBCO Spotfire S
cvelistv5nvd
CVE-2019-11204HIGHCVSS 8.8≥ unspecified, ≤ 7.11.1v10.0.02019-05-14
CVE-2019-11204 [HIGH] CVE-2019-11204: The web interface component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a v The web interface component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that might theoretically allow an authenticated user to access sensitive information needed by the Spotfire Statistics Services server. The sensitive information that might be affected includes database, JMX, LDAP, Windows service account, and user
cvelistv5nvd
CVE-2018-12410CRITICALCVSS 9.8≥ unspecified, ≤ 7.11.02018-10-10
CVE-2018-12410 [CRITICAL] CVE-2018-12410: The web server component of TIBCO Software Inc's Spotfire Statistics Services contains multiple vuln The web server component of TIBCO Software Inc's Spotfire Statistics Services contains multiple vulnerabilities that may allow the remote execution of code. Without needing to authenticate, an attacker may be able to remotely execute code with the permissions of the system account used to run the web server component. Affected releases are TIBCO Software
cvelistv5nvd