cvedb.io
CVE-2022-30579
HIGH · CVSS 7.1
EPSS exploitation probability: 0%
Published 2022-09-20T19:15:09.863 · Last modified 2026-06-17T04:43:53.547

Summary

The Web Player component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains a difficult to exploit vulnerability that allows a low privileged attacker with network access to execute blind Server Side Request Forgery (SSRF) on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace: version 12.0.0 and TIBCO Spotfire Server: version 12.0.0.

Affected products

tibco — spotfire_analytics_platform

Does this affect you?

Add your gear to cvedb and we'll alert you only when tibco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.