CVE-2014-7195

Published: Nov 21, 2014Modified: May 6, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2, Spotfire Deployment Kit 6.0.x before 6.0.2 and 6.5.x before 6.5.2, and Silver Fabric Enabler for Spotfire Web Player before 1.6.1 allows remote authenticated users to obtain sensitive information via unspecified vectors.

Affected (9)

Products: Tibco: Silver Fabric Enabler, Spotfire Deployment Kit, Spotfire Web Player

Tibco

3 products

Silver Fabric Enabler

Spotfire Deployment Kit

Spotfire Web Player

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tibco Silver Fabric Enabler	Up to 1.6.0

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Tibco Spotfire Deployment Kit	Version 6.0.0
Tibco Spotfire Deployment Kit	Version 6.0.1
Tibco Spotfire Deployment Kit	Version 6.5.0
Tibco Spotfire Deployment Kit	Version 6.5.1

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Tibco Spotfire Web Player	Version 6.0.0
Tibco Spotfire Web Player	Version 6.0.1
Tibco Spotfire Web Player	Version 6.5.0
Tibco Spotfire Web Player	Version 6.5.1