Vulnerability Description
Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2, Spotfire Deployment Kit 6.0.x before 6.0.2 and 6.5.x before 6.5.2, and Silver Fabric Enabler for Spotfire Web Player before 1.6.1 allows remote authenticated users to obtain sensitive information via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Silver Fabric Enabler | <= 1.6.0 |
| Tibco | Spotfire Deployment Kit | 6.0.0 |
| Tibco | Spotfire Web Player | 6.0.0 |
Related Weaknesses (CWE)
References
- http://www.tibco.com/assets/blta5b5c969aff51474/2014-009-spotfire-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
- http://www.tibco.com/assets/blta5b5c969aff51474/2014-009-spotfire-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
FAQ
What is CVE-2014-7195?
CVE-2014-7195 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2, Spotfire Deployment Kit 6.0.x before 6.0.2 and 6.5.x before 6.5.2, and Silver Fabric Enabler for Spot...
How severe is CVE-2014-7195?
CVE-2014-7195 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-7195?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Silver Fabric Enabler, Tibco Spotfire Deployment Kit, Tibco Spotfire Web Player.