CVE-2015-4554

Currently unrated

Key Information:

Vendor: Tibco
Status: Spotfire Deployment Kit
Vendor: CVE Published:; 21 July 2015

Summary

Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Analytics Platform for AWS 6.5 and 7.0.x before 7.0.1; Spotfire Automation Services before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Deployment Kit before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Desktop before 6.5.2 and 7.0.x before 7.0.1; Spotfire Desktop Language Packs 7.0.x before 7.0.1; Spotfire Professional before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Web Player before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; and Silver Fabric Enabler for Spotfire Web Player before 2.1.1 allow remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors.

References

http://www.securitytracker.com/id/1033015

vdb-entryx_refsource_SECTRACK

http://www.tibco.com/mk/advisory.jsp

x_refsource_CONFIRM

http://www.tibco.com/assets/blt1fd126faba191a9f/2015-001-...

x_refsource_CONFIRM

EPSS Score

4% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 21, 2015
Vulnerability Reserved
Jun 14, 2015

Collectors

NVD DatabaseMitre Database