Lucene search

[email protected]NVD:CVE-2022-41564

HistoryFeb 14, 2023 - 6:15 p.m.

CVE-2022-41564

2023-02-1418:15:11

[email protected]

web.nvd.nist.gov

tibco software inc

hawk console

operational intelligence hawk redtail

vulnerability

ems transport

ssl passwords

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

29.1%

JSON

The Hawk Console component of TIBCO Software Inc.'s TIBCO Hawk and TIBCO Operational Intelligence Hawk RedTail contains a vulnerability that will return the EMS transport password and EMS SSL password to a privileged user. Affected releases are TIBCO Software Inc.'s TIBCO Hawk: versions 6.1.0 through 6.2.1 and TIBCO Operational Intelligence Hawk RedTail: versions 7.0.0 through 7.2.0.

Affected configurations

Nvd

Node

tibcohawkRange6.1.0–6.2.2

tibcooperational_intelligence_hawk_redtailRange7.0.0–7.2.1

VendorProductVersionCPE
tibcohawk*cpe:2.3:a:tibco:hawk:*:*:*:*:*:*:*:*
tibcooperational_intelligence_hawk_redtail*cpe:2.3:a:tibco:operational_intelligence_hawk_redtail:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tibco	hawk	*	cpe:2.3:a:tibco:hawk::::::::
tibco	operational_intelligence_hawk_redtail	*	cpe:2.3:a:tibco:operational_intelligence_hawk_redtail::::::::

References

www.tibco.com/services/support/advisories

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

0.001

Percentile

29.1%

JSON

Related for NVD:CVE-2022-41564

cvelist1 prion1 cve1