Home

Description

The cfsend, cfrecv, and CyberResp components of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for UNIX and TIBCO Managed File Transfer Platform Server for z/Linux contain a difficult to exploit Remote Code Execution (RCE) vulnerability that allows a low privileged attacker with network access to execute arbitrary code on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for UNIX: versions 8.1.0 and below and TIBCO Managed File Transfer Platform Server for z/Linux: versions 8.1.0 and below.

PUBLISHED Reserved 2022-01-07 | Published 2022-03-30 | Updated 2024-09-16 | Assigner tibco




HIGH: 8.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Problem types

Successful execution of this vulnerability can result in a low privileged attacker gaining full user access to the affected system.

Product status

Any version
affected

Any version
affected

References

www.tibco.com/services/support/advisories

www.tibco.com/...2022-tibco-managed-file-transfer-2022-22772

www.tibco.com/services/support/advisories

www.tibco.com/...2022-tibco-managed-file-transfer-2022-22772

cve.org (CVE-2022-22772)

nvd.nist.gov (CVE-2022-22772)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.