CVE-2017-5531 HIGH

CVE-2017-5531

Vendor Tibco Software Inc.
Product TIBCO Managed File Transfer Command Center
Published October 17, 2017
Last update August 5, 2024

CVSS base score

8.0/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/A:H/AC:L/AV:N/C:H/I:H/PR:L/S:U/UI:R

What the vulnerability does

01Description

Deployments of TIBCO Managed File Transfer Command Center versions 8.0.0 and 8.0.1 and TIBCO Managed File Transfer Internet Server versions 8.0.0 and 8.0.1 that enable the Administrator Service may be affected by a vulnerability which may allow any authenticated user to gain administrative control of Managed File Transfer web applications.

Key dates

02Disclosure timeline

October 17, 2017 CVE published
August 5, 2024 Record updated