The GridServer Broker, and GridServer Director components of TIBCO Software Inc. TIBCO DataSynapse GridServer Manager contain vulnerabilities which may allow an authenticated user to perform cross-site scripting (XSS). In addition, an authenticated user could be a victim of a cross-site request forgery (CSRF) attack. Affected releases include TIBCO Software Inc.'s TIBCO DataSynapse GridServer Manager: versions up to and including 5.1.3; 6.0.0; 6.0.1; 6.0.2; 6.1.0; 6.1.1; and 6.2.0.
References
Link | Resource |
---|---|
https://www.tibco.com/support/advisories/2018/05/security-advisory-may-1-2018-tibco-datasynapse-gridserver-2017-5536 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: tibco
Published: 2018-05-01T00:00:00
Updated: 2018-05-01T17:57:01
Reserved: 2017-01-19T00:00:00
Link: CVE-2017-5536
JSON object: View
NVD Information
Status : Modified
Published: 2018-05-01T18:29:00.540
Modified: 2019-10-09T23:28:23.667
Link: CVE-2017-5536
JSON object: View
Redhat Information
No data.
CWE