CVE-2023-26214

Name of the Vulnerable Software and Affected Versions TIBCO BusinessConnect versions 7.3.0 and below

Description The BusinessConnect UI component of TIBCO Software Inc.'s TIBCO BusinessConnect contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities. This allows a low privileged attacker with network access to execute scripts targeting the affected system or the victim's local system.

Recommendations For versions 7.3.0 and below, update to a version above 7.3.0 to resolve the issue. As a temporary workaround, consider restricting access to the BusinessConnect UI component to minimize the risk of exploitation.