CyberSec.Space Logo
Back to CVE Browser

CVE-2014-2544

HIGH
7.5
CVSS Severity Score
EPSS Score0.1440%
EPSS Percentile14.84th
PublishedApr 10, 2014
Last ModifiedMay 6, 2026

Vulnerability Description

Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Automation Services 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Deployment Kit 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Desktop 6.x before 6.0.1; and Spotfire Analyst 6.x before 6.0.1 allows remote attackers to execute arbitrary code via unknown vectors.

Affected Platforms (CPE)

πŸ“¦
Tibco

Web Player

<= 4.0.3
πŸ“¦
Tibco

Web Player

= 4.5.0
πŸ“¦
Tibco

Web Player

= 4.5.1
πŸ“¦
Tibco

Web Player

= 5.0.0
πŸ“¦
Tibco

Web Player

= 5.0.1
πŸ“¦
Tibco

Web Player

= 5.5.0
πŸ“¦
Tibco

Web Player

= 6.0.0
πŸ“¦
Tibco

Automation Services

<= 4.0.3
πŸ“¦
Tibco

Automation Services

= 4.5.0
πŸ“¦
Tibco

Automation Services

= 4.5.1
πŸ“¦
Tibco

Automation Services

= 5.0.0
πŸ“¦
Tibco

Automation Services

= 5.0.1
πŸ“¦
Tibco

Automation Services

= 5.5.0
πŸ“¦
Tibco

Automation Services

= 6.0.0
πŸ“¦
Tibco

Spotfire Server

<= 3.3.3
πŸ“¦
Tibco

Spotfire Server

= 4.5.0
πŸ“¦
Tibco

Spotfire Server

= 5.0.0
πŸ“¦
Tibco

Spotfire Server

= 5.0.1
πŸ“¦
Tibco

Spotfire Server

= 5.5.0
πŸ“¦
Tibco

Spotfire Server

= 6.0.0
πŸ“¦
Tibco

Spotfire Server

= 6.0.1
πŸ“¦
Tibco

Spotfire Professional

<= 4.0.3
πŸ“¦
Tibco

Spotfire Professional

= 4.5.0
πŸ“¦
Tibco

Spotfire Professional

= 4.5.1
πŸ“¦
Tibco

Spotfire Professional

= 5.0.0
πŸ“¦
Tibco

Spotfire Professional

= 5.0.1
πŸ“¦
Tibco

Spotfire Professional

= 5.5.0
πŸ“¦
Tibco

Spotfire Professional

= 6.0.0
πŸ“¦
Tibco

Analyst

<= 6.0.0
πŸ“¦
Tibco

Desktop

<= 6.0.0
πŸ“¦
Tibco

Deployment Kit

<= 4.0.3
πŸ“¦
Tibco

Deployment Kit

= 4.5.0
πŸ“¦
Tibco

Deployment Kit

= 4.5.1
πŸ“¦
Tibco

Deployment Kit

= 5.0.0
πŸ“¦
Tibco

Deployment Kit

= 5.0.1
πŸ“¦
Tibco

Deployment Kit

= 5.5.0
πŸ“¦
Tibco

Deployment Kit

= 6.0.0

References & Advisories

πŸ”— http://www.tibco.com/mk/advisory.jsp
πŸ”— http://www.tibco.com/multimedia/spotfire_advisory_20140409_tcm8-20764.txt
πŸ”— http://www.tibco.com/mk/advisory.jsp
πŸ”— http://www.tibco.com/multimedia/spotfire_advisory_20140409_tcm8-20764.txt

Related Vulnerabilities

CVE-2003-150910.0

Real Networks RealOne Enterprise Desktop 6.0.11.774, RealOne Player 2.0, and RealOne Player 6.0.11.818 through RealOne Player 6.0....

CVE-2018-11519.8

The web server on Western Digital TV Media Player 1.03.07 and TV Live Hub 3.12.13 allow unauthenticated remote attackers to execut...

CVE-2017-31819.8

Multiple TIBCO Products are prone to multiple unspecified SQL-injection vulnerabilities because it fails to properly sanitize user...

CVE-2020-93809.8

IPTV Smarters WEB TV PLAYER through 2020-02-22 allows attackers to execute OS commands by uploading a script.