4
CVE-2015-5712
- EPSS 0.32%
- Published 28.10.2015 10:59:08
- Last modified 12.04.2025 10:46:40
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL.
Data is provided by the National Vulnerability Database (NVD)
Tibco ≫ Spotfire Analytics Platform For Aws Version <= 7.0.1
Tibco ≫ Spotfire Server Version5.0.0
Tibco ≫ Spotfire Server Version5.0.1
Tibco ≫ Spotfire Server Version5.0.2
Tibco ≫ Spotfire Server Version5.5.0
Tibco ≫ Spotfire Server Version5.5.1
Tibco ≫ Spotfire Server Version5.5.2
Tibco ≫ Spotfire Server Version5.5.3
Tibco ≫ Spotfire Server Version6.0.0
Tibco ≫ Spotfire Server Version6.0.1
Tibco ≫ Spotfire Server Version6.0.2
Tibco ≫ Spotfire Server Version6.0.3
Tibco ≫ Spotfire Server Version6.0.4
Tibco ≫ Spotfire Server Version6.5.0
Tibco ≫ Spotfire Server Version6.5.1
Tibco ≫ Spotfire Server Version6.5.2
Tibco ≫ Spotfire Server Version6.5.3
Tibco ≫ Spotfire Server Version7.0.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.545 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.