Lucene search

[email protected]NVD:CVE-2012-5302

HistoryOct 24, 2012 - 5:55 p.m.

CVE-2012-5302

2012-10-2417:55:01

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.3

Confidence

Low

EPSS

0.006

Percentile

77.7%

JSON

The server in TIBCO Formvine 3.1.x and 3.2.x before 3.2.1 does not properly implement access control, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.

Affected configurations

Nvd

Node

tibcoformvineMatch3.1.0

tibcoformvineMatch3.1.1

tibcoformvineMatch3.1.2

tibcoformvineMatch3.2.0

VendorProductVersionCPE
tibcoformvine3.1.0cpe:2.3:a:tibco:formvine:3.1.0:*:*:*:*:*:*:*
tibcoformvine3.1.1cpe:2.3:a:tibco:formvine:3.1.1:*:*:*:*:*:*:*
tibcoformvine3.1.2cpe:2.3:a:tibco:formvine:3.1.2:*:*:*:*:*:*:*
tibcoformvine3.2.0cpe:2.3:a:tibco:formvine:3.2.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tibco	formvine	3.1.0	cpe:2.3:a:tibco:formvine:3.1.0:::::::*
tibco	formvine	3.1.1	cpe:2.3:a:tibco:formvine:3.1.1:::::::*
tibco	formvine	3.1.2	cpe:2.3:a:tibco:formvine:3.1.2:::::::*
tibco	formvine	3.2.0	cpe:2.3:a:tibco:formvine:3.2.0:::::::*

References

osvdb.org/86606

www.securityfocus.com/bid/56225

www.tibco.com/multimedia/formvine-advisory-2012-10-23_tcm8-17451.txt

www.tibco.com/services/support/advisories/formvine-advisory_20121023.jsp

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.3

Confidence

Low

EPSS

0.006

Percentile

77.7%

JSON

Related for NVD:CVE-2012-5302

cvelist1 prion1 tibco1 cve1