CVE-2020-9412
10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Summary
The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows execution of arbitrary commands at the privilege level of the affected system following a failed file transfer. Affected releases are TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i: versions 7.1.0 and below, version 8.0.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| TIBCO Software Inc. | TIBCO Managed File Transfer Platform Server for IBM i | unspecified <= 7.1.0 | affected |
| TIBCO Software Inc. | TIBCO Managed File Transfer Platform Server for IBM i | 8.0.0 | affected |
Weaknesses
- The impact of this vulnerability includes the possibility that an unauthenticated attacker could execute arbitrary commands on the system.
ADP Enrichment
CVE Program Container
Additional References
- https://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2020/06/tibco-security-advisory-june-9-2020-tibco-managed-file-transfer-2020-9412
References
- https://www.tibco.com/services/support/advisories
- https://www.tibco.com/support/advisories/2020/06/tibco-security-advisory-june-9-2020-tibco-managed-file-transfer-2020-9412
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.