CVE-2015-4554

Published Jul 21, 2015

Last updated 7 years ago

CVSS info 7.5

Overview

Description: Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Analytics Platform for AWS 6.5 and 7.0.x before 7.0.1; Spotfire Automation Services before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Deployment Kit before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Desktop before 6.5.2 and 7.0.x before 7.0.1; Spotfire Desktop Language Packs 7.0.x before 7.0.1; Spotfire Professional before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; Spotfire Web Player before 5.5.2, 6.0.x before 6.0.3, 6.5.x before 6.5.3, and 7.0.x before 7.0.1; and Silver Fabric Enabler for Spotfire Web Player before 2.1.1 allow remote attackers to execute arbitrary code or obtain sensitive information via unknown vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57DC39D9-185E-43B3-9531-1C8009E3655A",
            "versionEndIncluding": "5.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F84BEBA3-273C-4F88-94DA-8B85175866F8"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D3F891B7-FD7E-47A0-8F38-C6BFC89CC72C"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27FF438B-B7AC-4FBC-A833-8AC044562F01"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "775D3D90-924C-41B0-B410-A86B0FD88771"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1943C4FB-EA8E-4796-87CF-B5E3B6CE2AF5"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D5619C4-83F5-4C1F-9668-E556A9F87E82"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_deployment_kit:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D050885E-62BF-454F-A653-129269829390"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3123E2BA-9ECD-42E1-907D-8ACD160ED92F",
            "versionEndIncluding": "5.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "266F4FB1-93F9-4A3A-98B1-7C1F72FD2422"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D806D55-863F-40CF-8025-8CD4319B7CE9"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E66C534-ADEF-4019-9D8A-DE862E69F4BF"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09A1FABD-ADA4-4156-A013-86B0A7354D04"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F38E62A0-412F-46D7-9A8A-313B22F7B275"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E6E9CF1-A6A1-441E-9D73-6F5353E6D2F7"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_professional:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D883BEDD-2A54-4D01-8322-E7804D1D057A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B2FC5EA-E43E-411F-A43E-A59AB75A9EF0",
            "versionEndIncluding": "5.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B99855B-C096-4431-9C48-BF521478839D"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22E0910B-2683-423A-B221-004CD3233D57"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7332A6C6-BA11-483D-B122-6A6532676012"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A722B273-B87E-4929-A155-57C57B4F2DB1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F67094E7-B46D-470D-8652-DFB8E3D8B5F1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "64B4D286-69ED-4BA2-B507-657E85B3E9AC"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_web_player:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C96AC0E-4C68-4CDD-A73F-3B19D2EEFE8E"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_desktop:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "157572D1-02EF-4175-A047-B9927AC58E00",
            "versionEndIncluding": "6.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_desktop:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "981372F8-3050-42BA-BF94-16478E4B04A5"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_desktop_language_packs:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B0550DF-14AA-4FEB-A23F-F0B4F048845A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88DE3F8C-E5BB-4903-BAD7-D30F3B1D10F5",
            "versionEndIncluding": "5.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB47D764-73E8-439F-8926-D33900537C2A"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC5A4314-73D2-41F5-A0CB-093AD6721D66"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C9A2072-B7B0-403C-A67A-0D8D9E09E623"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F0975D1-E4CC-41B6-AE83-CF8B8868ECA4"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "589EED8A-D63B-43C9-A6E5-9268A52AC25A"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "532C8956-2EE3-40A4-9770-D6374FF13307"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_automation_services:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0424905D-696E-4D5F-957E-9D360F03E296"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69B182CF-358B-4100-A405-AEF1FF367476",
            "versionEndIncluding": "5.5.1"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BAFDF6AB-0C5E-4758-AF64-0E12A55BF111"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D812E975-F3D1-4199-ABE9-606E5E0C3303"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BFF4B74-6985-41D6-A2DA-4BD5E0A0E5EA"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A31BED19-6530-438A-B4F4-8C085956FDD9"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E22C7ECD-0EB6-4F5F-8EAF-F4226C543DDC"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:6.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F908F48F-8CB7-4DB0-98ED-90FA5F5E4092"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analyst:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB2E0969-1D24-4AEB-918B-163CAFC8134A"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:silver_fabric_enabler_for_spotfire_webplayer:2.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F8B940A-A7F7-4136-B4BD-A30A6C42272E"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C5AEE71-18C6-41FC-9875-AD37C7D2749A"
          },
          {
            "criteria": "cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D330A100-EABC-40DD-9EA9-251ABDC1B10C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References