CVE-2023-29268
CVSS V2 None
CVSS V3 None
Description
The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Statistics Services: versions 11.4.10 and below, versions 11.5.0, 11.6.0, 11.6.1, 11.6.2, 11.7.0, 11.8.0, 11.8.1, 12.0.0, 12.0.1, and 12.0.2, versions 12.1.0 and 12.2.0.
Overview
- CVE ID
- CVE-2023-29268
- Assigner
- security@tibco.com
- Vulnerability Status
- Received
- Published Version
- 2023-04-26T18:15:09
- Last Modified Date
- 2023-04-26T18:15:09
References
| Reference URL | Reference Tags |
|---|---|
| https://www.tibco.com/services/support/advisories |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-29268 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29268 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-26 19:01:34 | Added to TrackCVE |