Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

TIBCO Software Inc. — Vulnerabilities & Security Advisories 159

Browse all 159 CVE security advisories affecting TIBCO Software Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

TIBCO Software Inc. provides enterprise integration and analytics platforms, primarily facilitating data connectivity and business process automation for large organizations. Historically, its software portfolio has exhibited a significant volume of vulnerabilities, with 159 Common Vulnerabilities and Exposures (CVEs) currently recorded. The most prevalent flaw classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues, often stemming from improper input validation and insufficient access controls within its integration middleware and analytics tools. While TIBCO has not been the subject of a singular, widely publicized catastrophic breach comparable to major data leaks, the sheer number of disclosed vulnerabilities indicates persistent challenges in secure coding practices across its diverse product suite. These findings underscore the necessity for rigorous patch management and continuous security monitoring for enterprises relying on TIBCO’s infrastructure to mitigate potential exploitation risks.

Top products by TIBCO Software Inc.: TIBCO JasperReports Server TIBCO Spotfire Analytics Platform for AWS Marketplace TIBCO EBX TIBCO EBX Add-ons TIBCO FTL - Community Edition TIBCO ActiveMatrix BPM TIBCO Spotfire Analyst TIBCO Managed File Transfer Command Center TIBCO Administrator - Enterprise Edition TIBCO Nimbus TIBCO PartnerExpress TIBCO Enterprise Runtime for R - Server Edition TIBCO Data Virtualization TIBCO JasperReports Library TIBCO Data Science for AWS TIBCO BusinessConnect Trading Community Management TIBCO eFTL - Community Edition TIBCO Enterprise Message Service TIBCO Rendezvous TIBCO ActiveSpaces - Community Edition TIBCO Spotfire Statistics Services TIBCO DataSynapse GridServer Manager TIBCO BusinessConnect TIBCO iWay Service Manager TIBCO Managed File Transfer Platform Server for IBM i TIBCO BusinessConnect Container Edition TIBCO BPM Enterprise TIBCO Spotfire Server TIBCO Data Science - Workbench TIBCO Hawk
CVE IDTitleCVSSSeverityPublished
CVE-2019-8989 TIBCO Spotfire Data Science Spoofing Vulnerability — TIBCO Data Science for AWS 4.3 -2019-03-26
CVE-2018-18808 TIBCO JasperReports Server Privilege Escalation Via Race Condition — TIBCO JasperReports Server 7.5 -2019-03-07
CVE-2018-18809 TIBCO JasperReports Library Directory Traversal Vulnerability — TIBCO JasperReports Library 7.5 -2019-03-07
CVE-2018-18815 TIBCO JasperReports Server User Information Disclosure — TIBCO JasperReports Server 9.8 -2019-03-07
CVE-2018-18816 TIBCO JasperReports Persistent Cross Site Scripting Vulnerability — TIBCO JasperReports Server 5.4 -2019-03-07
CVE-2019-8986 TIBCO JasperReports Server XML Entity Expansion Vulnerability — TIBCO JasperReports Server 6.5 -2019-03-07
CVE-2018-18812 TIBCO Spotfire Fails To Prevent Write Access to Spotfire Library — TIBCO Spotfire Analytics Platform for AWS Marketplace 5.3 -2019-01-16
CVE-2018-18813 TIBCO Spotfire Reflected and Persistent Cross-Site Scripting Vulnerabilities — TIBCO Spotfire Analytics Platform for AWS Marketplace 6.1 -2019-01-16
CVE-2018-18814 TIBCO Spotfire Authentication Vulnerability — TIBCO Spotfire Analytics Platform for AWS Marketplace 9.8 -2019-01-16
CVE-2018-18810 TIBCO Managed File Transfer Credentials Disclosure — TIBCO Managed File Transfer Command Center 9.9 -2018-12-11
CVE-2018-18807 TIBCO Statistica Server Vulnerable to Cross Site Scripting — TIBCO Statistica Server 5.4 -2018-11-26
CVE-2018-12416 TIBCO DataSynapse GridServer Manager Component Vulnerable to Cross-Site Request Forgery — TIBCO DataSynapse GridServer Manager 8.8 -2018-11-13
CVE-2018-12411 TIBCO ActiveSpaces Administrative Daemon Vulnerable to CSRF Attacks — TIBCO ActiveSpaces - Community Edition 8.8 -2018-11-07
CVE-2018-12412 TIBCO FTL Realm Server Vulnerable to CSRF Attacks — TIBCO FTL - Community Edition 8.8 -2018-11-07
CVE-2018-12413 TIBCO Messaging - Apache Kafka Distribution - Schema Repository Vulnerable to CSRF Attacks — TIBCO Messaging - Apache Kafka Distribution - Schema Repository - Community Edition 8.8 -2018-11-07
CVE-2018-12414 TIBCO Rendezvous Vulnerable to CSRF Attacks — TIBCO Rendezvous 8.8 -2018-11-07
CVE-2018-12415 TIBCO Enterprise Message Service Vulnerable to CSRF Attacks — TIBCO Enterprise Message Service 8.8 -2018-11-07
CVE-2018-12410 TIBCO Spotfire Statistics Services remote execution vulnerabilities — TIBCO Spotfire Statistics Services 9.8 -2018-10-10
CVE-2018-12408 TIBCO ActiveMatrix BusinessWorks 5.X XML eXternal Entity Vulnerability — TIBCO ActiveMatrix BusinessWorks 7.5 -2018-08-08
CVE-2018-5435 TIBCO Spotfire Product Family Remote Code Execution Vulnerability — TIBCO Spotfire Analyst 9.8 -2018-06-27
CVE-2018-5436 TIBCO Spotfire Server information disclosure vulnerabilities — TIBCO Spotfire Analytics Platform for AWS Marketplace 9.1 -2018-06-27
CVE-2018-5437 TIBCO Spotfire Product Family Information Disclosure Vulnerability — TIBCO Spotfire Analyst 6.5 -2018-06-27
CVE-2018-5428 TIBCO Data Virtualization Command Injection Vulnerability — TIBCO Data Virtualization 8.8 -2018-06-20
CVE-2018-5432 TIBCO Administrator - Enterprise Edition Cross-Site Scripting Vulnerability — TIBCO Administrator - Enterprise Edition 5.4 -2018-06-13
CVE-2018-5433 XML eXternal Entity Expansion Vulnerabilities with TIBCO Administrator — TIBCO Administrator - Enterprise Edition 6.5 -2018-06-13
CVE-2018-5434 XML eXternal Entity Expansion Vulnerabilities with TIBCO Runtime Agent — TIBCO Runtime Agent 6.5 -2018-06-13
CVE-2017-5535 TIBCO DataSynapse GridServer improper use of encryption — TIBCO DataSynapse GridServer Manager 8.8 -2018-05-01
CVE-2017-5536 TIBCO DataSynapse GridServer manager component vulnerable to cross-site scripting attacks — TIBCO DataSynapse GridServer Manager 5.4 -2018-05-01
CVE-2018-5429 TIBCO JasperReports Library Code Sandboxing Problem — TIBCO JasperReports Server 8.8 -2018-04-17
CVE-2018-5430 TIBCO JasperReports Server Information Disclosure Vulnerability — TIBCO JasperReports Server 8.1 -2018-04-17

This page lists every published CVE security advisory associated with TIBCO Software Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.