Vulnerability Description
The SOAP Admin API component of TIBCO Software Inc.'s TIBCO Silver Fabric contains a vulnerability that may allow reflected cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc.'s TIBCO Silver Fabric: versions up to and including 5.8.1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Silver Fabric | <= 5.8.1 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/107024Third Party Advisory
- http://www.tibco.com/services/support/advisoriesVendor Advisory
- https://www.tibco.com/support/advisories/2019/02/tibco-security-advisory-februarMitigationPatchVendor Advisory
- http://www.securityfocus.com/bid/107024Third Party Advisory
- http://www.tibco.com/services/support/advisoriesVendor Advisory
- https://www.tibco.com/support/advisories/2019/02/tibco-security-advisory-februarMitigationPatchVendor Advisory
FAQ
What is CVE-2018-12409?
CVE-2018-12409 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The SOAP Admin API component of TIBCO Software Inc.'s TIBCO Silver Fabric contains a vulnerability that may allow reflected cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc...
How severe is CVE-2018-12409?
CVE-2018-12409 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-12409?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Silver Fabric.