← back
CVE-2013-2373

CVE-2013-2373

EPSS 1.3%
The Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 does not properly implement access control, which allows remote attackers to obtain sensitive information or modify data via unspecified vectors.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.tibco.com/mk/advisory.jsphttp://www.tibco.com/multimedia/spotfire-web-player-advisory-2013-03-12_tcm8-18480.txthttp://www.tibco.com/services/support/advisories/spotfire-advisory_20130313.jsp