CVE-2018-5437
Summary
| CVE | CVE-2018-5437 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-06-27 16:29:00 UTC |
| Updated | 2019-10-09 23:41:00 UTC |
| Description | The TIBCO Spotfire Client and TIBCO Spotfire Web Player Client components of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Deployment Kit, TIBCO Spotfire Desktop, and TIBCO Spotfire Desktop Language Packs contain multiple vulnerabilities that may allow for unauthorized information disclosure. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analyst: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0; 7.12.0, TIBCO Spotfire Analytics Platform for AWS Marketplace: versions up to and including 7.12.0, TIBCO Spotfire Deployment Kit: versions up to and including 7.8.0; 7.9.0;7.9.1;7.10.0;7.10.1;7.11.0; 7.12.0, TIBCO Spotfire Desktop: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0;7.12.0, TIBCO Spotfire Desktop Language Packs: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Tibco | Spotfire Analyst | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Analyst | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Analyst | All | All | All | All |
| Application | Tibco | Spotfire Analytics Platform For Aws | All | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Deployment Kit | All | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.12.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Desktop | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Desktop | All | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.10.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.10.1 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.11.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.9.0 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | 7.9.1 | All | All | All |
| Application | Tibco | Spotfire Desktop Language Packs | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Advisory | TIBCO Software | MISC | www.tibco.com | Vendor Advisory |
| TIBCO Security Advisory: June 26, 2018 - TIBCO Spotfire - 2018-5437 | TIBCO Software | CONFIRM | www.tibco.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.