PT-2019-19291 · Tibco Software · Tibco Data Science For Aws+1
Published
2019-03-26
·
Updated
2022-10-14
·
CVE-2019-8988
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TIBCO Data Science for AWS versions up to and including 6.4.0
TIBCO Spotfire Data Science versions up to and including 6.4.0
Description
The application server component of TIBCO Software Inc.'s products contains a persistent cross-site vulnerability that theoretically allows a user to escalate their privileges on the affected system. This may allow for data modifications and deletions that should be denied.
Recommendations
For TIBCO Data Science for AWS versions up to and including 6.4.0, update to a version later than 6.4.0.
For TIBCO Spotfire Data Science versions up to and including 6.4.0, update to a version later than 6.4.0.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tibco Data Science For Aws
Tibco Spotfire Data Science