CVE-2024-10217 | THREATINT

Description

XSS Attack in mar.jar, Monitoring Archive Utility (MAR Utility), monitoringconsolecommon.jar in TIBCO Software Inc TIBCO Hawk and TIBCO Operational Intelligence

PUBLISHED Reserved 2024-10-21 | Published 2024-11-12 | Updated 2024-11-21 | Assigner tibco

CRITICAL: 9.2CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:H/VI:H/VA:N/SC:L/SI:N/SA:H/AU:N/R:U/V:C/U:Green

Problem types

The components listed above contain a vulnerability that allows the author of a malicious .mar file to perform an XSS attack

Product status

Default status

unaffected

6.2 (Patch) before 5

affected

Default status

unaffected

7.3 (Patch) before 0

affected

References

community.tibco.com/advisories

cve.org (CVE-2024-10217)

nvd.nist.gov (CVE-2024-10217)

Download JSON