Vulnerability Description
Unspecified vulnerability in the ActiveMatrix Runtime component in TIBCO ActiveMatrix Service Grid 3.0.0, 3.0.1, and 3.1.0; ActiveMatrix Service Bus 3.0.0 and 3.0.1; ActiveMatrix BusinessWorks Service Engine 5.9.0; ActiveMatrix BPM 1.0.1 and 1.0.2; Silver BPM Service 1.0.1; and Silver CAP Service 1.0.0 allows remote authenticated users to execute arbitrary code via vectors related to JMX connections.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Activematrix Bpm | 1.0.1 |
| Tibco | Activematrix Businessworks Service Engine | 5.9.0 |
| Tibco | Activematrix Service Bus | 3.0.0 |
| Tibco | Activematrix Service Grid | 3.0.0 |
| Tibco | Silver Bpm Service | 1.0.1 |
| Tibco | Silver Cap Service | 1.0.0 |
References
- http://secunia.com/advisories/42640Vendor Advisory
- http://www.securityfocus.com/bid/45400
- http://www.securitytracker.com/id?1024894
- http://www.tibco.com/multimedia/activematrix_advisory_20101214_tcm8-12728.txtVendor Advisory
- http://www.vupen.com/english/advisories/2010/3241Vendor Advisory
- http://secunia.com/advisories/42640Vendor Advisory
- http://www.securityfocus.com/bid/45400
- http://www.securitytracker.com/id?1024894
- http://www.tibco.com/multimedia/activematrix_advisory_20101214_tcm8-12728.txtVendor Advisory
- http://www.vupen.com/english/advisories/2010/3241Vendor Advisory
FAQ
What is CVE-2010-4495?
CVE-2010-4495 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in the ActiveMatrix Runtime component in TIBCO ActiveMatrix Service Grid 3.0.0, 3.0.1, and 3.1.0; ActiveMatrix Service Bus 3.0.0 and 3.0.1; ActiveMatrix BusinessWorks Service...
How severe is CVE-2010-4495?
CVE-2010-4495 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-4495?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Activematrix Bpm, Tibco Activematrix Businessworks Service Engine, Tibco Activematrix Service Bus, Tibco Activematrix Service Grid, Tibco Silver Bpm Service.