Unauthenticated Remote Code Execution in TIBCO AuditSafe Web Server

Unauthenticated Remote Code Execution in TIBCO AuditSafe Web Server

CVE-2022-22770 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Web Server component of TIBCO Software Inc.'s TIBCO AuditSafe contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute API methods on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO AuditSafe: versions 1.1.0 and below.

Learn more about our Web App Pen Testing.