CVE-2014-2542

Currently unrated

Key Information:

Vendor
Tibco
Status
Rendezvous
Messaging Appliance
Substantiation Es
Vendor
CVE Published:
8 April 2014

Summary

Cross-site scripting (XSS) vulnerability in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.securityfocus.com/bid/66737
vdb-entryx_refsource_BID
http://www.tibco.com/multimedia/rendezvous_advisory_20140...
x_refsource_CONFIRM
http://www.tibco.com/mk/advisory.jsp
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.