Vulnerability Details : CVE-2010-0683
Unspecified vulnerability in TIBRepoServer5.jar in TIBCO Administrator 5.4.0 through 5.6.0, when JMS transport is used, allows remote authenticated users to execute arbitrary code on all domain nodes via vectors related to leveraging administrative credentials.
Vulnerability category: Execute code
Exploit prediction scoring system (EPSS) score for CVE-2010-0683
Probability of exploitation activity in the next 30 days: 0.42%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 73 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-0683
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.0
|
MEDIUM | AV:N/AC:M/Au:S/C:P/I:P/A:P |
6.8
|
6.4
|
NIST |
References for CVE-2010-0683
-
http://www.tibco.com/services/support/advisories/adminstrator-advisory_20100223.jsp
Page Not Found | TIBCO SoftwarePatch;Vendor Advisory
-
http://www.tibco.com/multimedia/security_advisory_administrator_tcm8-10685.txt
404 Not FoundPatch;Vendor Advisory
-
http://www.vupen.com/english/advisories/2010/0463
Webmail | OVH- OVHVendor Advisory
-
http://www.securityfocus.com/bid/38396
TIBCO Administrator 'TIBRepoServer5.jar' Security Bypass Vulnerability
Products affected by CVE-2010-0683
- cpe:2.3:a:tibco:administrator:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tibco:administrator:5.6.0:*:*:*:*:*:*:*