Vulnerability Description
The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows execution of arbitrary commands at the privilege level of the affected system following a failed file transfer. Affected releases are TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i: versions 7.1.0 and below, version 8.0.0.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Managed File Transfer Platform Server | <= 7.1.0 |
| Ibm | I | - |
References
- https://www.tibco.com/services/support/advisoriesMailing ListVendor Advisory
- https://www.tibco.com/support/advisories/2020/06/tibco-security-advisory-june-9-Vendor Advisory
- https://www.tibco.com/services/support/advisoriesMailing ListVendor Advisory
- https://www.tibco.com/support/advisories/2020/06/tibco-security-advisory-june-9-Vendor Advisory
FAQ
What is CVE-2020-9412?
CVE-2020-9412 is a vulnerability with a CVSS score of 10.0 (CRITICAL). The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerability that theoretically allows execution of arbitrary commands at the pri...
How severe is CVE-2020-9412?
CVE-2020-9412 has been rated CRITICAL with a CVSS base score of 10.0/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-9412?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Managed File Transfer Platform Server, Ibm I.