CVE-2021-23272— TIBCO BPM Cross Site Scripting (XSS)

TIBCO BPM Cross Site Scripting (XSS)

The Application Development Clients component of TIBCO Software Inc.'s TIBCO BPM Enterprise and TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows a low privileged attacker with network access to execute a Cross Site Scripting (XSS) attack on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO BPM Enterprise: versions 4.3.0 and below and TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric: versions 4.3.0 and below.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

N/A

Micrium Tibco BPM Enterprise 跨站脚本漏洞

Tibco BPM Enterprise是美国Tibco公司的一款业务流程管理平台。该平台使公司能够通过做出更好的决策和更快，更明智的行动来推动数字化转型。 TIBCO Software Inc. TIBCO BPM Enterprise 和 TIBCO BPM Enterprise 存在跨站脚本漏洞，该漏洞允许具有网络访问权限的低特权攻击者对受影响的对象执行跨站点脚本（XSS）攻击系统。

N/A

N/A