Vulnerability Description
Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Spotfire Analytics Platform For Aws | <= 7.0.1 |
| Tibco | Spotfire Server | 5.0.0 |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1034011
- http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
- http://www.securitytracker.com/id/1034011
- http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
FAQ
What is CVE-2015-5712?
CVE-2015-5712 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before...
How severe is CVE-2015-5712?
CVE-2015-5712 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-5712?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Spotfire Analytics Platform For Aws, Tibco Spotfire Server.