CVE-2014-2544
Summary
| CVE | CVE-2014-2544 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-04-10 00:55:09 UTC |
| Updated | 2026-05-06 22:30:45 UTC |
| Description | Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Automation Services 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Deployment Kit 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Desktop 6.x before 6.0.1; and Spotfire Analyst 6.x before 6.0.1 allows remote attackers to execute arbitrary code via unknown vectors. |
Risk And Classification
Primary CVSS: v2.0 7.5 from [email protected]
AV:N/AC:L/Au:N/C:P/I:P/A:P
Problem Types: NVD-CWE-noinfo | n/a
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
LowAuthentication
NoneConfidentiality
PartialIntegrity
PartialAvailability
PartialAV:N/AC:L/Au:N/C:P/I:P/A:P
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Tibco | Analyst | All | All | All | All |
| Application | Tibco | Automation Services | 4.5.0 | All | All | All |
| Application | Tibco | Automation Services | 4.5.1 | All | All | All |
| Application | Tibco | Automation Services | 5.0.0 | All | All | All |
| Application | Tibco | Automation Services | 5.0.1 | All | All | All |
| Application | Tibco | Automation Services | 5.5.0 | All | All | All |
| Application | Tibco | Automation Services | 6.0.0 | All | All | All |
| Application | Tibco | Automation Services | All | All | All | All |
| Application | Tibco | Deployment Kit | 4.5.0 | All | All | All |
| Application | Tibco | Deployment Kit | 4.5.1 | All | All | All |
| Application | Tibco | Deployment Kit | 5.0.0 | All | All | All |
| Application | Tibco | Deployment Kit | 5.0.1 | All | All | All |
| Application | Tibco | Deployment Kit | 5.5.0 | All | All | All |
| Application | Tibco | Deployment Kit | 6.0.0 | All | All | All |
| Application | Tibco | Deployment Kit | All | All | All | All |
| Application | Tibco | Desktop | All | All | All | All |
| Application | Tibco | Spotfire Professional | 4.5.0 | All | All | All |
| Application | Tibco | Spotfire Professional | 4.5.1 | All | All | All |
| Application | Tibco | Spotfire Professional | 5.0.0 | All | All | All |
| Application | Tibco | Spotfire Professional | 5.0.1 | All | All | All |
| Application | Tibco | Spotfire Professional | 5.5.0 | All | All | All |
| Application | Tibco | Spotfire Professional | 6.0.0 | All | All | All |
| Application | Tibco | Spotfire Professional | All | All | All | All |
| Application | Tibco | Spotfire Server | 4.5.0 | All | All | All |
| Application | Tibco | Spotfire Server | 5.0.0 | All | All | All |
| Application | Tibco | Spotfire Server | 5.0.1 | All | All | All |
| Application | Tibco | Spotfire Server | 5.5.0 | All | All | All |
| Application | Tibco | Spotfire Server | 6.0.0 | All | All | All |
| Application | Tibco | Spotfire Server | 6.0.1 | All | All | All |
| Application | Tibco | Spotfire Server | All | All | All | All |
| Application | Tibco | Web Player | 4.5.0 | All | All | All |
| Application | Tibco | Web Player | 4.5.1 | All | All | All |
| Application | Tibco | Web Player | 5.0.0 | All | All | All |
| Application | Tibco | Web Player | 5.0.1 | All | All | All |
| Application | Tibco | Web Player | 5.5.0 | All | All | All |
| Application | Tibco | Web Player | 6.0.0 | All | All | All |
| Application | Tibco | Web Player | All | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Advisory | TIBCO Software | af854a3a-2127-422b-91ae-364da2661108 | www.tibco.com | Vendor Advisory |
| 404 Not Found | af854a3a-2127-422b-91ae-364da2661108 | www.tibco.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.