The tibbr web server components of tibbr Community, and tibbr Enterprise contain SAML protocol handling errors which may allow authorized users to impersonate other users, and therefore escalate their access privileges. Affected releases are tibbr Community 5.2.1 and below; 6.0.0; 6.0.1; 7.0.0, tibbr Enterprise 5.2.1 and below; 6.0.0; 6.0.1; 7.0.0.
References
Link | Resource |
---|---|
https://www.tibco.com/support/advisories/2017/12/tibco-security-advisory-december-12-2017-tibbr-2017-5530 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: tibco
Published: 2017-12-12T00:00:00
Updated: 2017-12-13T01:57:01
Reserved: 2017-01-19T00:00:00
Link: CVE-2017-5530
JSON object: View
NVD Information
Status : Modified
Published: 2017-12-13T02:29:11.157
Modified: 2019-10-09T23:28:22.823
Link: CVE-2017-5530
JSON object: View
Redhat Information
No data.
CWE