CVE-2021-28827

Name of the Vulnerable Software and Affected Versions: TIBCO Administrator - Enterprise Edition versions 5.11.1 and earlier TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric versions 5.11.1 and earlier TIBCO Administrator - Enterprise Edition for z/Linux versions 5.11.1 and earlier TIBCO Runtime Agent versions 5.11.1 and earlier TIBCO Runtime Agent for z/Linux versions 5.11.1 and earlier

Description: The Administration GUI component of TIBCO Software Inc.'s products contains a vulnerability that allows an unauthenticated attacker to social engineer a legitimate user with network access to execute a Stored XSS attack targeting the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker.

Recommendations: For TIBCO Administrator - Enterprise Edition versions 5.11.1 and earlier, update to a version above 5.11.1. For TIBCO Administrator - Enterprise Edition Distribution for TIBCO Silver Fabric versions 5.11.1 and earlier, update to a version above 5.11.1. For TIBCO Administrator - Enterprise Edition for z/Linux versions 5.11.1 and earlier, update to a version above 5.11.1. For TIBCO Runtime Agent versions 5.11.1 and earlier, update to a version above 5.11.1. For TIBCO Runtime Agent for z/Linux versions 5.11.1 and earlier, update to a version above 5.11.1.