7.2

CVE-2010-0184

EPSS 0.03%
Published 14.01.2010 19:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility in TIBCO Runtime Agent (TRA) before 5.6.2, as used in TIBCO ActiveMatrix BusinessWorks and other products, set weak permissions on domain properties files, which allows local users to obtain domain administrator credentials, and gain privileges on all domain systems, via unspecified vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 8

Data is provided by the National Vulnerability Database (NVD)

Tibco ≫ Runtime Agent Version <= 5.6.1

Tibco ≫ Runtime Agent Version5.4.0

Tibco ≫ Runtime Agent Version5.5.3

Tibco ≫ Runtime Agent Version5.5.4

Tibco ≫ Runtime Agent Version5.6

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.064

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://www.tibco.com/mk/advisory.jsp

Vendor Advisory

http://secunia.com/advisories/38191

Vendor Advisory

http://www.securityfocus.com/bid/37805

http://www.tibco.com/multimedia/security_advisory_runtime_agent_20100113_tcm8-10392.txt

http://www.vupen.com/english/advisories/2010/0128

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2010-0184

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-0184

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-0184

EUVD