Overview
- Description
- Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.
- Source
- security@tibco.com
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_command_center:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9CC7F565-F7F7-4120-919B-66B106CBACB6"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_command_center:8.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "69A629F1-437C-44C8-9A76-99B83B35FFB1"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_internet_server:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FF76DCF-71CD-46C3-AFC6-40B495C88253"
},
{
"criteria": "cpe:2.3:a:tibco:managed_file_transfer_internet_server:8.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A45C66B-F7B5-4DBD-AAE2-7A7D14605AFD"
}
],
"operator": "OR"
}
]
}
]