CVE-2023-26214

CVSS V2 None CVSS V3 None
Description
The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect: versions 7.3.0 and below.
Overview
  • CVE ID
  • CVE-2023-26214
  • Assigner
  • security@tibco.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-02-22T18:15:10
  • Last Modified Date
  • 2023-03-02T18:26:30
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:tibco:businessconnect:*:*:*:*:-:*:*:* 1 OR 7.3.1
References
Reference URL Reference Tags
https://www.tibco.com/services/support/advisories Vendor Advisory
History
Created Old Value New Value Data Type Notes
2023-04-17 08:05:01 Added to TrackCVE
2023-04-17 08:05:03 Weakness Enumeration new