CVE-2017-5531
8
CVSS:3.0/A:H/AC:L/AV:N/C:H/I:H/PR:L/S:U/UI:R
Summary
Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TIBCO Software Inc. | TIBCO Managed File Transfer Command Center | 8.0.0 | affected |
| TIBCO Software Inc. | TIBCO Managed File Transfer Command Center | 8.0.1 | affected |
| TIBCO Software Inc. | TIBCO Managed File Transfer Internet Server | 8.0.0 | affected |
| TIBCO Software Inc. | TIBCO Managed File Transfer Internet Server | 8.0.1 | affected |
Weaknesses
- privilege escalation
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/101545
- http://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2017/10/tibco-security-advisory-october-17-2017-tibco-managed-file-transfer
References
- http://www.securityfocus.com/bid/101545
- http://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2017/10/tibco-security-advisory-october-17-2017-tibco-managed-file-transfer
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.