- Description
- Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.
- Source
- security@tibco.com
- NVD status
- Modified
CVSS 3.0
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_command_center:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9CC7F565-F7F7-4120-919B-66B106CBACB6"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_command_center:8.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69A629F1-437C-44C8-9A76-99B83B35FFB1"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_internet_server:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FF76DCF-71CD-46C3-AFC6-40B495C88253"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_internet_server:8.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A45C66B-F7B5-4DBD-AAE2-7A7D14605AFD"
}
],
"operator": "OR"
}
]
}
]