CVE-2017-5527

Summary

TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x before 7.6.1, 7.7.x before 7.7.1, and 7.8.x before 7.8.1 and Spotfire Analytics Platform for AWS Marketplace 7.8.0 and earlier contain multiple vulnerabilities which may allow authorized users to perform SQL injection attacks.

Affected Software

VendorProductVersion RangeStatus
TIBCO Software Inc.TIBCO Spotfire Server7.0.0affected
TIBCO Software Inc.TIBCO Spotfire Server7.0.1affected
TIBCO Software Inc.TIBCO Spotfire Server7.5.0affected
TIBCO Software Inc.TIBCO Spotfire Server7.6.0affected
TIBCO Software Inc.TIBCO Spotfire Server7.7.0affected
TIBCO Software Inc.TIBCO Spotfire Server7.8.0affected
TIBCO Software Inc.TIBCO Spotfire Analytics Platform for AWS Marketplace7.8.0affected

Weaknesses

  • SQL injection attack

ADP Enrichment

CVE Program Container

Additional References

References