Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| TIBCO Software Inc. | TIBCO Data Virtualization | affected |
|
||||||||||||||||||
| TIBCO Software Inc. | TIBCO Data Virtualization for AWS Marketplace | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Vendor Solution
TIBCO has released updated versions of the affected components which address these issues. TIBCO Data Virtualization versions 7.0.8 and below update to version 7.0.9 or higher TIBCO Data Virtualization versions 8.0.0, 8.1.0, 8.1.1, and 8.2.0 update to version 8.3.0 or higher TIBCO Data Virtualization for AWS Marketplace versions 8.2.0 and below update to version 8.3.0 or higher
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2020-30235 | The TIBCO Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affected system. The user must be authenticated and have privileges required to monitor the server in an operational capacity. Affected releases are TIBCO Software Inc.'s TIBCO Data Virtualization: versions 7.0.8 and below, versions 8.0.0, 8.1.0, 8.1.1, and 8.2.0 and TIBCO Data Virtualization for AWS Marketplace: versions 8.2.0 and below. |
No history.
MITRE
Status: PUBLISHED
Assigner: tibco
Published:
Updated: 2024-09-16T17:04:04.831Z
Reserved: 2020-02-26T00:00:00.000Z
Link: CVE-2020-9415
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-18T19:15:14.173
Modified: 2024-11-21T05:40:35.800
Link: CVE-2020-9415
Redhat
No data.
OpenCVE Enrichment
No data.