CVE-2021-43055

The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains an easily exploitable vulnerability that allows clients to inherit the permissions of the client that initially connected on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO eFTL - Community Edition: versions 6.7.2 and below, TIBCO eFTL - Developer Edition: versions 6.7.2 and below, and TIBCO eFTL - Enterprise Edition: versions 6.7.2 and below.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:tibco:eftl:*:*:*:*:community:*:*:*
cpe:2.3:a:tibco:eftl:*:*:*:*:developer:*:*:*
cpe:2.3:a:tibco:eftl:*:*:*:*:enterprise:*:*:*

History

12 Jul 2022, 17:42

Type Values Removed Values Added
CWE CWE-269 NVD-CWE-noinfo

19 Jan 2022, 15:12

Type Values Removed Values Added
CWE CWE-269
CPE cpe:2.3:a:tibco:eftl:*:*:*:*:community:*:*:*
cpe:2.3:a:tibco:eftl:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:tibco:eftl:*:*:*:*:developer:*:*:*
References (CONFIRM) https://www.tibco.com/support/advisories/2022/01/tibco-security-advisory-january-11-2022-tibco-eftl-2021-43055 - (CONFIRM) https://www.tibco.com/support/advisories/2022/01/tibco-security-advisory-january-11-2022-tibco-eftl-2021-43055 - Vendor Advisory
References (CONFIRM) https://www.tibco.com/services/support/advisories - (CONFIRM) https://www.tibco.com/services/support/advisories - Vendor Advisory
First Time Tibco eftl
Tibco
CVSS v2 : unknown
v3 : unknown
v2 : 6.5
v3 : 8.8

11 Jan 2022, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-01-11 19:15

Updated : 2023-12-10 14:09


NVD link : CVE-2021-43055

Mitre link : CVE-2021-43055

CVE.ORG link : CVE-2021-43055


JSON object : View

Products Affected

tibco

  • eftl