exploitDog

CVE-2014-2075

Опубликовано: 27 фев. 2014

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary commands via unspecified vectors.

Ссылки

http://www.tibco.com/mk/advisory.jsp
Vendor Advisory
http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt
Vendor Advisory
http://www.tibco.com/mk/advisory.jsp
Vendor Advisory
http://www.tibco.com/multimedia/enterprise_administator_advisory_20140226_tcm8-20533.txt
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:tibco:enterprise_administrator:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:tibco:enterprise_administrator_sdk:1.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02516

Низкий

10 Critical

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-h6xq-vr98-wvhw

github

больше 3 лет назад

TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary commands via unspecified vectors.

EPSS

Процентиль: 85%

0.02516

Низкий

10 Critical

CVSS2

Дефекты

CWE-287