Session Fixation Vulnerability in TIBCO Spotfire Server Products
CVE-2011-3133

Currently unrated

Key Information:

Vendor: Tibco
Status: Spotfire Server; Spotfire Analytics Server
Vendor: CVE Published:; 2 September 2011

Summary

A session fixation vulnerability exists in multiple versions of TIBCO Spotfire Server and Analytics Server. This vulnerability can allow remote attackers to hijack web sessions by exploiting unspecified vectors, potentially compromising user data and application security. It is crucial for organizations using affected versions to apply the necessary patches or updates to mitigate the risk.

References

http://www.tibco.com/services/support/advisories/default.jsp

x_refsource_CONFIRM

http://www.securitytracker.com/id?1025999

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/45864

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Sep 2, 2011
Vulnerability Reserved
Aug 11, 2011