CVE-2015-5712

{"id": "CVE-2015-5712", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-10-28T10:59:08.573", "references": [{"url": "http://www.securitytracker.com/id/1034011", "source": "cve@mitre.org"}, {"url": "http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.tibco.com/mk/advisory.jsp", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id/1034011", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.tibco.com/assets/blt3a3a55ab42f2f5cd/2015-004-advisory.txt", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.tibco.com/mk/advisory.jsp", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote authenticated users to obtain sensitive system information by visiting an unspecified URL."}, {"lang": "es", "value": "Spotfire Parsing Library y Spotfire Security Filter en TIBCO Spotfire Server 5.5.x en versiones anteriores a 5.5.4, 6.0.x en versiones anteriores a 6.0.5, 6.5.x en versiones anteriores a 6.5.4 y 7.0.x en versiones anteriores a 7.0.1 y Spotfire Analytics Platform en versiones anteriores a 7.0.2 para AWS Marketplace permiten a usuarios remotos autenticados obtener informaci\u00f3n de sistema sensible visitando una URL no especificada."}], "lastModified": "2024-11-21T02:33:41.440", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55798DF6-3619-495B-89F1-3B5BC6BFC0C7", "versionEndIncluding": "7.0.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tibco:spotfire_server:5.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDDBB141-ACAB-4DCD-A83C-07A35100E4A0"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDEF086A-9352-4EA4-9DCF-C669EF6DA1A9"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F26D2986-AFC4-4D1B-AEB3-259F0D54BB42"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A25EDFEF-5AB5-4416-9DA1-CD5F09E7D2F3"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2566DD9-FAD8-4C81-9555-035CE303EDA0"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA577FFE-3D95-4824-88FE-41F4A6431B81"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:5.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BE49169-F96D-43BE-97FF-267B3DCA1389"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A424AA69-6047-4C18-B34A-CF6900E49C9E"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "136549C9-317D-455D-870B-9DEB8972C837"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B36BAD00-5EDC-4961-926F-6C3BBF3BCBA6"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90096070-D473-403A-9E09-504D307450E2"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "335DE877-4B6B-4F34-8EE0-7638CBCCFE92"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8E1E236-1CE2-4A0E-8733-B0F515F1CF25"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A256A7E-80A2-4F5F-844D-1953DB23E714"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4159019F-8982-40DB-A13C-37BF48473653"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:6.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8FCC5CB2-4BE7-428F-9A84-B19C51DFDA19"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:7.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84EC1E4C-EA97-4892-BD26-23690194F693"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}