Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

TIBCO Software Inc. — Vulnerabilities & Security Advisories 159

Browse all 159 CVE security advisories affecting TIBCO Software Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

TIBCO Software Inc. provides enterprise integration and analytics platforms, primarily facilitating data connectivity and business process automation for large organizations. Historically, its software portfolio has exhibited a significant volume of vulnerabilities, with 159 Common Vulnerabilities and Exposures (CVEs) currently recorded. The most prevalent flaw classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues, often stemming from improper input validation and insufficient access controls within its integration middleware and analytics tools. While TIBCO has not been the subject of a singular, widely publicized catastrophic breach comparable to major data leaks, the sheer number of disclosed vulnerabilities indicates persistent challenges in secure coding practices across its diverse product suite. These findings underscore the necessity for rigorous patch management and continuous security monitoring for enterprises relying on TIBCO’s infrastructure to mitigate potential exploitation risks.

Top products by TIBCO Software Inc.: TIBCO JasperReports Server TIBCO Spotfire Analytics Platform for AWS Marketplace TIBCO EBX TIBCO EBX Add-ons TIBCO FTL - Community Edition TIBCO ActiveMatrix BPM TIBCO Spotfire Analyst TIBCO Managed File Transfer Command Center TIBCO Administrator - Enterprise Edition TIBCO Nimbus TIBCO PartnerExpress TIBCO Enterprise Runtime for R - Server Edition TIBCO Data Virtualization TIBCO JasperReports Library TIBCO Data Science for AWS TIBCO BusinessConnect Trading Community Management TIBCO eFTL - Community Edition TIBCO Enterprise Message Service TIBCO Rendezvous TIBCO ActiveSpaces - Community Edition TIBCO Spotfire Statistics Services TIBCO DataSynapse GridServer Manager TIBCO BusinessConnect TIBCO iWay Service Manager TIBCO Managed File Transfer Platform Server for IBM i TIBCO BusinessConnect Container Edition TIBCO BPM Enterprise TIBCO Spotfire Server TIBCO Data Science - Workbench TIBCO Hawk
CVE IDTitleCVSSSeverityPublished
CVE-2020-9409 TIBCO JasperReports Server Fails To Enforce Access Restrictions — TIBCO JasperReports Server 9.8 Critical2020-05-20
CVE-2020-9410 TIBCO JasperReports Library — TIBCO JasperReports Library 7.3 High2020-05-20
CVE-2020-9408 TIBCO Spotfire Server Script Trust Problem Exposes Remote Code Execution Vulnerability — TIBCO Spotfire Analytics Platform for AWS Marketplace 8.8 -2020-03-11
CVE-2019-17333 TIBCO EBX Exposes Cross-Site Scripting Vulnerability — TIBCO EBX 5.4 -2020-02-19
CVE-2019-17338 TIBCO Patterns - Search Exposes Cross Site Scripting Vulnerabilities — TIBCO Patterns - Search 5.4 -2020-01-28
CVE-2019-17337 TIBCO Spotfire Server Library Vulnerable to Reflected Cross-Site Scripting — TIBCO Spotfire Analytics Platform for AWS Marketplace 6.1 -2019-12-17
CVE-2019-17335 TIBCO Spotfire Server Exposes User-Specific Cached Data To Others Users — TIBCO Spotfire Analytics Platform for AWS Marketplace 6.5 -2019-12-17
CVE-2019-17336 TIBCO Spotfire Web Player Potentially Exposes Credentials For Shared Data Sources — TIBCO Spotfire Analytics Platform for AWS Marketplace 6.5 -2019-12-17
CVE-2019-17334 TIBCO Spotfire Analyst and Desktop Remote Code Execution Via Shared Files — TIBCO Spotfire Analyst 8.0 -2019-12-17
CVE-2019-17331 TIBCO EBX Add-on For Data Exchange Cross-Site Scripting Vulnerabilities — TIBCO EBX Add-ons 5.4 -2019-11-12
CVE-2019-17332 TIBCO EBX Add-on For Digital Asset Manager Cross-Site Scripting Vulnerabilities — TIBCO EBX Add-ons 5.4 -2019-11-12
CVE-2019-17330 TIBCO EBX Exposes Multiple Cross-Site Scripting Vulnerabilities — TIBCO EBX 8.9 -2019-11-12
CVE-2019-11212 TIBCO MDM Exposes Cross-Site Scripting Vulnerabilities — TIBCO MDM 6.3 Medium2019-10-09
CVE-2019-11211 TIBCO Enterprise Runtime for R Server Running On Linux With Containerized TERR Service Vulnerable To Remote Code Execution — TIBCO Enterprise Runtime for R - Server Edition 9.9 -2019-09-18
CVE-2019-11210 TIBCO Enterprise Runtime for R Server Exposes Remote Code Execution — TIBCO Enterprise Runtime for R - Server Edition 10.0 -2019-09-18
CVE-2019-11209 TIBCO FTL Escalation Of Privileges for Realm Configuration — TIBCO FTL Community Edition 9.8 -2019-08-20
CVE-2019-11207 TIBCO LogLogic Log Management Intelligence Multiple Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) Vulnerabilities — TIBCO LogLogic Enterprise Virtual Appliance 8.8 -2019-08-13
CVE-2019-11208 TIBCO API Exchange Processes OAuth Incorrectly — TIBCO API Exchange Gateway 8.8 -2019-08-08
CVE-2019-11204 TIBCO Spotfire Statistics Services Exposes Sensitive Files — TIBCO Spotfire Statistics Services 8.8 -2019-05-14
CVE-2019-11205 TIBCO Spotfire Server Exposes Multiple Reflected Cross-Site Scripting Vulnerabilities — TIBCO Spotfire Analytics Platform for AWS Marketplace 6.1 -2019-05-14
CVE-2019-11206 TIBCO Spotfire Server Vulnerabilities With Integrity of Comments and Bookmarks — TIBCO Spotfire Analytics Platform for AWS Marketplace 4.3 -2019-05-14
CVE-2019-8995 TIBCO ActiveMatrix BPM Open Redirect Vulnerability — TIBCO ActiveMatrix BPM 5.4 -2019-04-24
CVE-2019-11203 TIBCO ActiveMatrix BPM Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities — TIBCO ActiveMatrix BPM 8.8 -2019-04-24
CVE-2019-8991 TIBCO Active Matrix Service Grid Administrator With Multiple Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities — TIBCO ActiveMatrix BPM 8.3 -2019-04-24
CVE-2019-8992 TIBCO Active Matrix Service Grid Administrator Remote Code Execution — TIBCO ActiveMatrix BPM 8.8 -2019-04-24
CVE-2019-8993 TIBCO Active Matrix Service Grid Administrator Unauthenticated Download of Sensitive File — TIBCO ActiveMatrix BPM 8.8 -2019-04-24
CVE-2019-8994 TIBCO ActiveMatrix BPM Escalation of Privileges Vulnerability — TIBCO ActiveMatrix BPM 5.4 -2019-04-24
CVE-2019-8990 TIBCO ActiveMatrix BusinessWorks Fails To Properly Enforce Authentication — TIBCO ActiveMatrix BusinessWorks 8.1 -2019-04-09
CVE-2019-8987 TIBCO Spotfire Data Science Vulnerable to Persistent Cross-Site Scripting — TIBCO Data Science for AWS 5.4 -2019-03-26
CVE-2019-8988 TIBCO Spotfire Data Science Privilege Escalation Vulnerability — TIBCO Data Science for AWS 7.3 -2019-03-26

This page lists every published CVE security advisory associated with TIBCO Software Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.