Check CVE Id
Check CWE Id
'Managed file transfer internet server'
The Administrator Service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, and TIBCO Managed File Transfer Internet Server contains vulnerabilities where an authenticated user with specific privileges can gain access to credentials to other systems. Affected releases are TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center: versions up to and including 7.3.2; 8.0.0; 8.0.1; 8.0.2; 8.1.0, and TIBCO Managed File Transfer Internet Server: versions up to and including 7.3.2; 8.0.0; 8.0.1; 8.0.2; 8.1.0.
Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.
TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request.
TIBCO Managed File Transfer Internet Server before 7.2.4, Managed File Transfer Command Center before 7.2.4, Slingshot before 1.9.3, and Vault before 1.1.1 allow remote attackers to obtain sensitive information or modify data by leveraging agent access.
TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive information via a crafted HTTP request.
Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified vectors.
Cross-site scripting (XSS) vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Hawk monitoring agent
Smart pgm fx
Enterprise message service
Adapter files z os
Mainframe service tracker
Activematrix businessworks service engine
Activematrix service bus
Activematrix service grid
Activematrix service performance manager
Silver bpm service
Silver cap service
Collaborative information manager
Silver businessworks service
Spotfire analytics server
Managed file transfer command center
Managed file transfer internet server
Silver fabric activematrix service grid distribution
Web player automation services
Spotfire statistics services
Spotfire web player
Enterprise administrator sdk
Silver fabric enabler
Spotfire deployment kit
Activematrix management agent
Activematrix policy agent
Activematrix policy manager
Silver fabric enabler for spotfire webplayer
Spotfire analytics platform for aws
Spotfire automation services
Spotfire desktop language packs
Rendezvous network server
Enterprise message service appliance
Enterprise message service appliance firmware
Jasperreports server community edition
Jasperreports server for activematrix bpm
Jaspersoft for aws with multitenancy
Jaspersoft reporting and analytics for aws
Jasperreports library community edition
Jaspersoft studio for activematrix bpm
Jaspersoft for aws with multi-tenancy
Jasperreports library for activematrix bpm
Jaspersoft reporting and analytics
Businessworks process monitor
Datasynapse gridserver manager
Silver fabric enabler for spotfire web player
Spotfire web player client
Activematrix businessworks distribution for tibco silver fabric
Messaging - apache kafka distribution - schema repository
Rendezvous for z/linux
Rendezvous for z/os
Data science for aws
Spotfire data science
Activematrix business process management
Activematrix policy director
See all Products for Vendor
Back to Top