PT-2019-19297 · Tibco · Tibco Activematrix Bpm Distribution For Tibco Silver Fabric+3
Published
2019-04-24
·
Updated
2021-11-06
·
CVE-2019-8994
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
TIBCO ActiveMatrix BPM versions up to and including 4.2.0
TIBCO ActiveMatrix BPM Distribution for TIBCO Silver Fabric versions up to and including 4.2.0
TIBCO Silver Fabric Enabler for ActiveMatrix BPM versions up to and including 1.4.1
Description
The workspace client of the affected TIBCO products contains vulnerabilities that allow an authenticated user to change settings, potentially impacting other users.
Recommendations
For TIBCO ActiveMatrix BPM versions up to and including 4.2.0, update to a version later than 4.2.0 to resolve the issue.
For TIBCO ActiveMatrix BPM Distribution for TIBCO Silver Fabric versions up to and including 4.2.0, update to a version later than 4.2.0 to resolve the issue.
For TIBCO Silver Fabric Enabler for ActiveMatrix BPM versions up to and including 1.4.1, update to a version later than 1.4.1 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Tibco Activematrix Bpm
Tibco Activematrix Bpm Distribution For Tibco Silver Fabric
Tibco Silver Fabric
Tibco Silver Fabric Enabler For Activematrix Bpm