PT-2018-14668 · Tibco · Tibco Statistica Server

Published

2018-11-26

Updated

2019-10-09

CVE-2018-18807

CVSS v3.1

7.6

High

Vector

AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H

Name of the Vulnerable Software and Affected Versions TIBCO Statistica Server versions up to and including 13.4.0

Description The web application of the TIBCO Statistica component contains issues that may allow an authenticated user to perform cross-site scripting (XSS) attacks.

Recommendations For versions up to and including 13.4.0, update to a version later than 13.4.0 to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-18807

Affected Products

Tibco Statistica Server

PT-2018-14668 · Tibco · Tibco Statistica Server

CVE-2018-18807

Weakness Enumeration

Related Identifiers

Affected Products

References · 5