Sensitive Log Information Disclosure in TIBCO Spotfire Server and Spotfire Analytics Platform

Sensitive Log Information Disclosure in TIBCO Spotfire Server and Spotfire Analytics Platform

CVE-2015-5713 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Spotfire Parsing Library and Spotfire Security Filter in TIBCO Spotfire Server 5.5.x before 5.5.4, 6.0.x before 6.0.5, 6.5.x before 6.5.4, and 7.0.x before 7.0.1 and Spotfire Analytics Platform before 7.0.2 for AWS Marketplace allow remote attackers to obtain sensitive log information by visiting an unspecified URL.

Learn more about our Cis Benchmark Audit For Server Software.