CVE-2011-3134

{"id": "CVE-2011-3134", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-09-02T16:55:06.850", "references": [{"url": "http://secunia.com/advisories/45864", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1025999", "source": "cve@mitre.org"}, {"url": "http://www.tibco.com/multimedia/spotfire_advisory_20110831_tcm8-14230.txt", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.tibco.com/services/support/advisories/default.jsp", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/45864", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1025999", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.tibco.com/multimedia/spotfire_advisory_20110831_tcm8-14230.txt", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.tibco.com/services/support/advisories/default.jsp", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to modify data or obtain sensitive information via a crafted URL."}, {"lang": "es", "value": "Vulnerabilidad no especificada en TIBICO Spotfire Server v3.0.x antes de v3.0.2, v3.1.x antes de v3.1.2, v3.2.x antes de v3.2.1, y v3.3.x antes de v3.3.1, y Spotfire Analytics Server antes de v10.1.1, permite a atacantes remotos modificar datos y obtener informacion sensible a trav\u00e9s de una URL modificada"}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tibco:spotfire_analytics_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD8B38CE-0977-4B25-B706-58F6F4837040", "versionEndIncluding": "10.0.1"}, {"criteria": "cpe:2.3:a:tibco:spotfire_analytics_server:10.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B311C43-60C3-48FD-8D15-011494976DF4"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EAD01FF-01E7-4227-85A7-151710F09C7A"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53A8389F-EF56-4AE8-A6E7-1FD27909841E"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB808329-4833-44E6-8899-7ACC595A7532"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "287F7473-7880-47E4-AAD5-3F0893451B47"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B26AB0F6-0A8E-42CE-9D01-54567C73AE2C"}, {"criteria": "cpe:2.3:a:tibco:spotfire_server:3.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A54C6A5-827C-4FD3-A102-E6400A4A9DC5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}