CVE-2018-18810

Published: Dec 11, 2018Modified: Nov 21, 2024

9.9

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 3.1 / Impact: 6.0

Source: NVD

Description

The Administrator Service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, and TIBCO Managed File Transfer Internet Server contains vulnerabilities where an authenticated user with specific privileges can gain access to credentials to other systems. Affected releases are TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center: versions up to and including 7.3.2; 8.0.0; 8.0.1; 8.0.2; 8.1.0, and TIBCO Managed File Transfer Internet Server: versions up to and including 7.3.2; 8.0.0; 8.0.1; 8.0.2; 8.1.0.

Affected (6)

Products: Tibco: Managed File Transfer Command Center, Managed File Transfer Internet Server

Tibco

2 products

Managed File Transfer Command Center

Managed File Transfer Internet Server

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Tibco Managed File Transfer Command Center	Up to 7.3.2
Tibco Managed File Transfer Command Center	From 8.0.0 to 8.0.2
Tibco Managed File Transfer Command Center	Version 8.1.0
Tibco Managed File Transfer Internet Server	Up to 7.3.2
Tibco Managed File Transfer Internet Server	From 8.0.0 to 8.0.2
Tibco Managed File Transfer Internet Server	Version 8.1.0

References (4)

http://www.tibco.com/services/support/advisories

Source: security@tibco.com

Vendor Advisory

https://www.tibco.com/support/advisories/2018/12/tibco-security-advisory-december-11-2018-tibco-managed-file-transfer

Source: security@tibco.com

Vendor Advisory

http://www.tibco.com/services/support/advisories

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.tibco.com/support/advisories/2018/12/tibco-security-advisory-december-11-2018-tibco-managed-file-transfer

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.