漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
TIBCO EBX Insecure Login Mechanism
Vulnerability Description
The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, and TIBCO Product and Service Catalog powered by TIBCO EBX contains a vulnerability that under certain specific conditions allows an attacker to enter a password other than the legitimate password and it will be accepted as valid. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.8.123 and below, TIBCO EBX: versions 5.9.3, 5.9.4, 5.9.5, 5.9.6, 5.9.7, 5.9.8, 5.9.9, 5.9.10, 5.9.11, 5.9.12, 5.9.13, and 5.9.14, TIBCO EBX: versions 6.0.0 and 6.0.1, and TIBCO Product and Service Catalog powered by TIBCO EBX: version 1.0.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Tibco Ebx 授权问题漏洞
Vulnerability Description
Tibco Ebx是印度Tibco公司的一个支持一体化来管理企业数据资产的软件。 TIBCO EBX Web Server 存在授权问题漏洞,该漏洞源于软件对于用户提交的密码验证存在问题,在某些特定的条件下允许攻击者可利用该漏洞输入一个密码以外的其他合法密码,它会被接受为有效。
CVSS Information
N/A
Vulnerability Type
N/A