4
CVE-2015-5712
- EPSS 0.32%
- Veröffentlicht 28.10.2015 10:59:08
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tibco ≫ Spotfire Analytics Platform For Aws Version <= 7.0.1
Tibco ≫ Spotfire Server Version5.0.0
Tibco ≫ Spotfire Server Version5.0.1
Tibco ≫ Spotfire Server Version5.0.2
Tibco ≫ Spotfire Server Version5.5.0
Tibco ≫ Spotfire Server Version5.5.1
Tibco ≫ Spotfire Server Version5.5.2
Tibco ≫ Spotfire Server Version5.5.3
Tibco ≫ Spotfire Server Version6.0.0
Tibco ≫ Spotfire Server Version6.0.1
Tibco ≫ Spotfire Server Version6.0.2
Tibco ≫ Spotfire Server Version6.0.3
Tibco ≫ Spotfire Server Version6.0.4
Tibco ≫ Spotfire Server Version6.5.0
Tibco ≫ Spotfire Server Version6.5.1
Tibco ≫ Spotfire Server Version6.5.2
Tibco ≫ Spotfire Server Version6.5.3
Tibco ≫ Spotfire Server Version7.0.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.545 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.