CVE-2011-3132

Currently unrated

Key Information:

Vendor: Tibco
Status: Spotfire Server; Spotfire Analytics Server
Vendor: CVE Published:; 2 September 2011

Summary

Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.tibco.com/services/support/advisories/default.jsp

x_refsource_CONFIRM

http://www.securitytracker.com/id?1025999

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/45864

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Sep 2, 2011
Vulnerability Reserved
Aug 11, 2011

Collectors

NVD DatabaseMitre Database