The Web Client component of TIBCO Software Inc.'s TIBCO Nimbus contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to exploit an open redirect on the affected system. A successful attack using this vulnerability requires human interaction from a person other than the attacker. Affected releases are TIBCO Software Inc.'s TIBCO Nimbus: version 10.5.0.
References
Link | Resource |
---|---|
https://www.tibco.com/services/support/advisories | Vendor Advisory |
Configurations
History
08 Dec 2022, 19:55
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-601 | |
References | (CONFIRM) https://www.tibco.com/services/support/advisories - Vendor Advisory | |
CPE | cpe:2.3:a:tibco:nimbus:10.5.0:*:*:*:*:*:*:* | |
First Time |
Tibco
Tibco nimbus |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.3 |
06 Dec 2022, 19:23
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-06 19:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-41559
Mitre link : CVE-2022-41559
CVE.ORG link : CVE-2022-41559
JSON object : View
Products Affected
tibco
- nimbus
CWE
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')