4.3
CVE-2011-3133
- EPSS 1.7%
- Veröffentlicht 02.09.2011 16:55:06
- Zuletzt bearbeitet 16.06.2026 23:32:43
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Session fixation vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to hijack web sessions via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tibco ≫ Spotfire Analytics Server Version <= 10.0.1
Tibco ≫ Spotfire Analytics Server Version10.0.0
Tibco ≫ Spotfire Server Version3.0.0
Tibco ≫ Spotfire Server Version3.0.1
Tibco ≫ Spotfire Server Version3.1.0
Tibco ≫ Spotfire Server Version3.1.1
Tibco ≫ Spotfire Server Version3.2.0
Tibco ≫ Spotfire Server Version3.3.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.7% | 0.742 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://www.tibco.com/services/support/advisories/default.jsp
http://secunia.com/advisories/45864
http://www.securitytracker.com/id?1025999
http://www.tibco.com/multimedia/spotfire_advisory_20110831_tcm8-14230.txt