The TIBCO Spotfire Client and TIBCO Spotfire Web Player Client components of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Deployment Kit, TIBCO Spotfire Desktop, and TIBCO Spotfire Desktop Language Packs contain multiple vulnerabilities that may allow for remote code execution. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analyst: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0; 7.12.0, TIBCO Spotfire Analytics Platform for AWS Marketplace: versions up to and including 7.12.0, TIBCO Spotfire Deployment Kit: versions up to and including 7.8.0; 7.9.0;7.9.1;7.10.0;7.10.1;7.11.0; 7.12.0, TIBCO Spotfire Desktop: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0;7.12.0, TIBCO Spotfire Desktop Language Packs: versions up to and including 7.8.0; 7.9.0; 7.9.1; 7.10.0; 7.10.1; 7.11.0.
Fixes

Solution

TIBCO has released updated versions of the affected components which address these issues. For each affected system, update to the corresponding software versions: TIBCO Spotfire Analyst versions 7.8.0 and below update to version 7.8.1 or higher TIBCO Spotfire Analyst versions 7.9.0 and 7.9.1 update to version 7.9.2 or higher TIBCO Spotfire Analyst versions 7.10.0 and 7.10.1 update to version 7.10.2 or higher TIBCO Spotfire Analyst version 7.11.0 update to version 7.11.1 TIBCO Spotfire Analyst version 7.12.0 update to version 7.13.0 TIBCO Spotfire Analytics Platform for AWS Marketplace versions 7.12.0 and below update to version 7.13.0 or higher TIBCO Spotfire Deployment Kit versions 7.8.0 and below update to version 7.8.1 or higher TIBCO Spotfire Deployment Kit versions 7.9.0 and 7.9.1 update to version 7.9.2 or higher TIBCO Spotfire Deployment Kit versions 7.10.0 and 7.10.1 update to version 7.10.2 or higher TIBCO Spotfire Deployment Kit version 7.11.0 update to version 7.11.1 or higher TIBCO Spotfire Deployment Kit version 7.12.0 update to version 7.13.0 or higher TIBCO Spotfire Desktop versions 7.8.0 and below update to version 7.8.1 or higher TIBCO Spotfire Desktop versions 7.9.0 and 7.9.1 update to version 7.9.2 or higher TIBCO Spotfire Desktop versions 7.10.0 and 7.10.1 update to version 7.10.2 or higher TIBCO Spotfire Desktop version 7.11.0 update to version 7.11.1 or higher TIBCO Spotfire Desktop version 7.12.0 update to version 7.13.0 or higher TIBCO Spotfire Desktop Language Packs versions 7.8.0 and below update to version 7.8.1 or higher TIBCO Spotfire Desktop Language Packs versions 7.9.0 and 7.9.1 update to version 7.9.2 or higher TIBCO Spotfire Desktop Language Packs versions 7.10.0 and 7.10.1 update to version 7.10.2 or higher TIBCO Spotfire Desktop Language Packs version 7.11.0 update to version 7.11.1 or higher


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: tibco

Published:

Updated: 2024-09-16T19:51:48.227Z

Reserved: 2018-01-12T00:00:00

Link: CVE-2018-5435

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-06-27T16:29:00.347

Modified: 2024-11-21T04:08:47.810

Link: CVE-2018-5435

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.