Tibco Ebx Add Ons

Do you want an email whenever new security vulnerabilities are reported in Tibco Ebx Add Ons?

By the Year

In 2023 there have been 1 vulnerability in Tibco Ebx Add Ons with an average score of 5.4 out of ten. Last year Ebx Add Ons had 2 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Ebx Add Ons in 2023 could surpass last years number. Last year, the average CVE base score was greater by 3.60

Year	Vulnerabilities	Average Score
2023	1	5.40
2022	2	9.00
2021	1	7.10
2020	0	0.00
2019	2	5.40
2018	0	0.00

It may take a day or so for new Ebx Add Ons vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Tibco Ebx Add Ons Security Vulnerabilities

The server component of TIBCO Software Inc

CVE-2022-41566 5.4 - Medium - February 22, 2023

The server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute stored XSS on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 5.6.0 and below.

XSS

The Web Server component of TIBCO Software Inc

CVE-2022-30578 9 - Critical - September 21, 2022

The Web Server component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute Stored Cross Site Scripting (XSS) on the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 5.4.1 and below.

XSS

The Web server component of TIBCO Software Inc

CVE-2022-22769 9 - Critical - January 19, 2022

The Web server component of TIBCO Software Inc.'s TIBCO EBX, TIBCO EBX, TIBCO EBX, TIBCO EBX Add-ons, TIBCO EBX Add-ons, TIBCO EBX Add-ons, and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute Stored Cross Site Scripting (XSS) on the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.8.124 and below, TIBCO EBX: versions 5.9.3, 5.9.4, 5.9.5, 5.9.6, 5.9.7, 5.9.8, 5.9.9, 5.9.10, 5.9.11, 5.9.12, 5.9.13, 5.9.14, and 5.9.15, TIBCO EBX: versions 6.0.0, 6.0.1, 6.0.2, and 6.0.3, TIBCO EBX Add-ons: versions 3.20.18 and below, TIBCO EBX Add-ons: versions 4.1.0, 4.2.0, 4.2.1, 4.2.2, 4.3.0, 4.3.1, 4.3.2, 4.3.3, 4.3.4, 4.4.0, 4.4.1, 4.4.2, 4.4.3, 4.5.0, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5, and 4.5.6, TIBCO EBX Add-ons: versions 5.0.0, 5.0.1, 5.1.0, 5.1.1, and 5.2.0, and TIBCO Product and Service Catalog powered by TIBCO EBX: versions 1.1.0 and below.

XSS

The TIBCO EBX Add-on for Oracle Hyperion EPM, TIBCO EBX Data Exchange Add-on, and TIBCO EBX Insight Add-on components of TIBCO Software Inc

CVE-2020-27148 7.1 - High - January 12, 2021

The TIBCO EBX Add-on for Oracle Hyperion EPM, TIBCO EBX Data Exchange Add-on, and TIBCO EBX Insight Add-on components of TIBCO Software Inc.'s TIBCO EBX Add-ons contain a vulnerability that theoretically allows a low privileged attacker with network access to execute an XML External Entity (XXE) attack. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions 4.4.2 and below.

XXE

The Data Exchange Web Interface component of TIBCO Software Inc

CVE-2019-17331 5.4 - Medium - November 12, 2019

The Data Exchange Web Interface component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions up to and including 3.20.13, version 4.1.0.

XSS

The Digital Asset Manager Web Interface component of TIBCO Software Inc

CVE-2019-17332 5.4 - Medium - November 12, 2019

The Digital Asset Manager Web Interface component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting (XSS) attacks. Affected releases are TIBCO Software Inc.'s TIBCO EBX Add-ons: versions up to and including 3.20.13, versions 4.1.0, 4.2.0, 4.2.1, and 4.2.2.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Tibco Ebx Add Ons or by Tibco? Click the Watch button to subscribe.

Tibco
Vendor

Tibco Ebx Add Ons
Product

Tibco Ebx Add Ons

By the Year

Recent Tibco Ebx Add Ons Security Vulnerabilities

The server component of TIBCO Software Inc CVE-2022-41566 5.4 - Medium - February 22, 2023

The Web Server component of TIBCO Software Inc CVE-2022-30578 9 - Critical - September 21, 2022

The Web server component of TIBCO Software Inc CVE-2022-22769 9 - Critical - January 19, 2022

The TIBCO EBX Add-on for Oracle Hyperion EPM, TIBCO EBX Data Exchange Add-on, and TIBCO EBX Insight Add-on components of TIBCO Software Inc CVE-2020-27148 7.1 - High - January 12, 2021

The Data Exchange Web Interface component of TIBCO Software Inc CVE-2019-17331 5.4 - Medium - November 12, 2019

The Digital Asset Manager Web Interface component of TIBCO Software Inc CVE-2019-17332 5.4 - Medium - November 12, 2019