The Auth Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition contains an easily exploitable vulnerability that allows an unauthenticated attacker with local access to obtain administrative usernames and passwords for the affected system. Affected releases are TIBCO Software Inc.'s TIBCO BusinessConnect Container Edition: versions 1.1.0 and below.
References
Link | Resource |
---|---|
https://www.tibco.com/services/support/advisories | Vendor Advisory |
https://www.tibco.com/support/advisories/2022/01/tibco-security-advisory-february-15-2022-tibco-bcce-2021-43050 | Vendor Advisory |
Configurations
History
23 Feb 2022, 20:46
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://www.tibco.com/support/advisories/2022/01/tibco-security-advisory-february-15-2022-tibco-bcce-2021-43050 - Vendor Advisory | |
References | (CONFIRM) https://www.tibco.com/services/support/advisories - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
CWE | NVD-CWE-noinfo | |
CPE | cpe:2.3:a:tibco:businessconnect:*:*:*:*:container:*:*:* | |
First Time |
Tibco
Tibco businessconnect |
15 Feb 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
15 Feb 2022, 18:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-15 18:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-43050
Mitre link : CVE-2021-43050
CVE.ORG link : CVE-2021-43050
JSON object : View
Products Affected
tibco
- businessconnect
CWE