mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-22 14:06:54 +02:00
0xMarcio
1.8 KiB
1.8 KiB
CVE-2018-12415
%20that%20use%20the%20Central%20Administration%20server%2C%20the%20impact%20of%20this%20vulnerability%20includes%20the%20theoretical%20possibility%20of%20reconfiguring%20all%20EMS%20servers%20administered%20by%20the%20affected%20component.%20With%20such%20access%2C%20the%20attacker%20might%20also%20be%20able%20to%20gain%20access%20to%20all%20data%20sent%20via%20EMS.&color=brightgreen)
Description
The Central Administration server (emsca) component of TIBCO Software Inc.'s TIBCO Enterprise Message Service, TIBCO Enterprise Message Service - Community Edition, and TIBCO Enterprise Message Service - Developer Edition contains a vulnerability which may allow an attacker to perform cross-site request forgery (CSRF) attacks. Affected releases are TIBCO Software Inc.'s TIBCO Enterprise Message Service: versions 8.4.0 and below, TIBCO Enterprise Message Service - Community Edition: versions 8.4.0 and below, and TIBCO Enterprise Message Service - Developer Edition: versions 8.4.0 and below.
POC
Reference
Github
No PoCs found on GitHub currently.