cnvd - cnvd-2019-35781

CNVD-2019-35781

Vulnerability from cnvd - Published: 2019-10-17

Title

TIBCO Software Spotfire Analytics Platform for AWS Marketplace和TIBCO Software Enterprise Runtime for R-Server Edition输入验证错误漏洞

Description

TIBCO Software Spotfire Analytics Platform for AWS Marketplace和TIBCO Software Enterprise Runtime for R-Server Edition都是美国TIBCO Software公司的产品。TIBCO Software Spotfire Analytics Platform for AWS Marketplace是一套为云应用商店AWS提供数据可视化分析的平台。TIBCO Software Enterprise Runtime for R-Server Edition是一款适用于R-Server的企业级统计分析引擎。 TIBCO SoftwareTIBCO Enterprise Runtime for R - Server Edition 1.2.0及之前版本、TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0版本和10.5.0版本中的服务器组件存在输入验证错误漏洞，攻击者可利用该漏洞执行代码。

Severity

高

Patch Name

TIBCO Software Spotfire Analytics Platform for AWS Marketplace和TIBCO Software Enterprise Runtime for R-Server Edition输入验证错误漏洞的补丁

Patch Description

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211

Reference

https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211 http://www.tibco.com/services/support/advisories,https://nvd.nist.gov/vuln/detail/CVE-2019-11211

Impacted products

Name
TIBCO Software TIBCO Software TIBCO Enterprise Runtime for R - Server Edition <=1.2.0

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-11211",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11211"
    }
  },
  "description": "TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u548cTIBCO Software Enterprise Runtime for R-Server Edition\u90fd\u662f\u7f8e\u56fdTIBCO Software\u516c\u53f8\u7684\u4ea7\u54c1\u3002TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u662f\u4e00\u5957\u4e3a\u4e91\u5e94\u7528\u5546\u5e97AWS\u63d0\u4f9b\u6570\u636e\u53ef\u89c6\u5316\u5206\u6790\u7684\u5e73\u53f0\u3002TIBCO Software Enterprise Runtime for R-Server Edition\u662f\u4e00\u6b3e\u9002\u7528\u4e8eR-Server\u7684\u4f01\u4e1a\u7ea7\u7edf\u8ba1\u5206\u6790\u5f15\u64ce\u3002\n\nTIBCO SoftwareTIBCO Enterprise Runtime for R - Server Edition 1.2.0\u53ca\u4e4b\u524d\u7248\u672c\u3001TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0\u7248\u672c\u548c10.5.0\u7248\u672c\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002",
  "discovererName": "unknown",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-35781",
  "openTime": "2019-10-17",
  "patchDescription": "TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u548cTIBCO Software Enterprise Runtime for R-Server Edition\u90fd\u662f\u7f8e\u56fdTIBCO Software\u516c\u53f8\u7684\u4ea7\u54c1\u3002TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u662f\u4e00\u5957\u4e3a\u4e91\u5e94\u7528\u5546\u5e97AWS\u63d0\u4f9b\u6570\u636e\u53ef\u89c6\u5316\u5206\u6790\u7684\u5e73\u53f0\u3002TIBCO Software Enterprise Runtime for R-Server Edition\u662f\u4e00\u6b3e\u9002\u7528\u4e8eR-Server\u7684\u4f01\u4e1a\u7ea7\u7edf\u8ba1\u5206\u6790\u5f15\u64ce\u3002\r\n\r\nTIBCO SoftwareTIBCO Enterprise Runtime for R - Server Edition 1.2.0\u53ca\u4e4b\u524d\u7248\u672c\u3001TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0\u7248\u672c\u548c10.5.0\u7248\u672c\u4e2d\u7684\u670d\u52a1\u5668\u7ec4\u4ef6\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u548cTIBCO Software Enterprise Runtime for R-Server Edition\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "TIBCO Software TIBCO Software TIBCO Enterprise Runtime for R - Server Edition \u003c=1.2.0"
  },
  "referenceLink": "https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211\r\nhttp://www.tibco.com/services/support/advisories,https://nvd.nist.gov/vuln/detail/CVE-2019-11211",
  "serverity": "\u9ad8",
  "submitTime": "2019-09-18",
  "title": "TIBCO Software Spotfire Analytics Platform for AWS Marketplace\u548cTIBCO Software Enterprise Runtime for R-Server Edition\u8f93\u5165\u9a8c\u8bc1\u9519\u8bef\u6f0f\u6d1e"
}

CVE-2019-11211 (GCVE-0-2019-11211)

Vulnerability from cvelistv5 – Published: 2019-09-18 22:21 – Updated: 2024-09-17 03:34

Summary

The server component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, and TIBCO Spotfire Analytics Platform for AWS Marketplace contains a vulnerability that theoretically allows an authenticated user to trigger remote code execution in certain circumstances. When the affected component runs with the containerized TERR service on Linux the host can theoretically be tricked into running malicious code. This issue affects: TIBCO Enterprise Runtime for R - Server Edition version 1.2.0 and below, and TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0; 10.5.0.

Severity ?

9.9 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE

The impact of this vulnerability includes the theoretical possibility that an attacker could gain full control of the operating system account hosting the affected component. In addition to the information flowing through the system, the exposed information might include secrets necessary to issue trusted requests to other TIBCO Spotfire servers.

Assigner

tibco

References

URL

Tags

	http://www.tibco.com/services/support/advisories	x_refsource_MISC
	https://www.tibco.com/support/advisories/2019/09/…	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

TIBCO Software Inc.

TIBCO Enterprise Runtime for R - Server Edition

Affected: 1.2.0 and below

TIBCO Software Inc.

TIBCO Spotfire Analytics Platform for AWS Marketplace

Affected: 10.4.0
Affected: 10.5.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T22:48:09.046Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.tibco.com/services/support/advisories"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "TIBCO Enterprise Runtime for R - Server Edition",
          "vendor": "TIBCO Software Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "1.2.0 and below"
            }
          ]
        },
        {
          "product": "TIBCO Spotfire Analytics Platform for AWS Marketplace",
          "vendor": "TIBCO Software Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "10.4.0"
            },
            {
              "status": "affected",
              "version": "10.5.0"
            }
          ]
        }
      ],
      "datePublic": "2019-09-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The server component of TIBCO Software Inc.\u0027s TIBCO Enterprise Runtime for R - Server Edition, and TIBCO Spotfire Analytics Platform for AWS Marketplace contains a vulnerability that theoretically allows an authenticated user to trigger remote code execution in certain circumstances. When the affected component runs with the containerized TERR service on Linux the host can theoretically be tricked into running malicious code. This issue affects: TIBCO Enterprise Runtime for R - Server Edition version 1.2.0 and below, and TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0; 10.5.0."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.9,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "The impact of this vulnerability includes the theoretical possibility that an attacker could gain full control of the operating system account hosting the affected component. In addition to the information flowing through the system, the exposed information might include secrets necessary to issue trusted requests to other TIBCO Spotfire servers.",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-09-18T22:34:53",
        "orgId": "4f830c72-39e4-45f6-a99f-78cc01ae04db",
        "shortName": "tibco"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.tibco.com/services/support/advisories"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "TIBCO has released updated versions of the affected systems which address this issue:\n\nTIBCO Enterprise Runtime for R - Server Edition versions 1.2.0 and below update to version 1.2.1 or higher\nTIBCO Spotfire Analytics Platform for AWS Marketplace versions 10.4.0 and 10.5.0 update to version 10.5.1 or higher."
        }
      ],
      "source": {
        "discovery": "INTERNAL"
      },
      "title": "TIBCO Enterprise Runtime for R Server Running On Linux With Containerized TERR Service Vulnerable To Remote Code Execution",
      "x_generator": {
        "engine": "Vulnogram 0.0.6"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@tibco.com",
          "DATE_PUBLIC": "2019-09-17T16:00:00.000Z",
          "ID": "CVE-2019-11211",
          "STATE": "PUBLIC",
          "TITLE": "TIBCO Enterprise Runtime for R Server Running On Linux With Containerized TERR Service Vulnerable To Remote Code Execution"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "TIBCO Enterprise Runtime for R - Server Edition",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.2.0 and below"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "TIBCO Spotfire Analytics Platform for AWS Marketplace",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "10.4.0"
                          },
                          {
                            "version_value": "10.5.0"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "TIBCO Software Inc."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The server component of TIBCO Software Inc.\u0027s TIBCO Enterprise Runtime for R - Server Edition, and TIBCO Spotfire Analytics Platform for AWS Marketplace contains a vulnerability that theoretically allows an authenticated user to trigger remote code execution in certain circumstances. When the affected component runs with the containerized TERR service on Linux the host can theoretically be tricked into running malicious code. This issue affects: TIBCO Enterprise Runtime for R - Server Edition version 1.2.0 and below, and TIBCO Spotfire Analytics Platform for AWS Marketplace 10.4.0; 10.5.0."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.6"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.9,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "The impact of this vulnerability includes the theoretical possibility that an attacker could gain full control of the operating system account hosting the affected component. In addition to the information flowing through the system, the exposed information might include secrets necessary to issue trusted requests to other TIBCO Spotfire servers."
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.tibco.com/services/support/advisories",
              "refsource": "MISC",
              "url": "http://www.tibco.com/services/support/advisories"
            },
            {
              "name": "https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211",
              "refsource": "CONFIRM",
              "url": "https://www.tibco.com/support/advisories/2019/09/tibco-security-advisory-september-17-2019-tibco-enterprise-runtime-for-r-server-2019-11211"
            }
          ]
        },
        "solution": [
          {
            "lang": "en",
            "value": "TIBCO has released updated versions of the affected systems which address this issue:\n\nTIBCO Enterprise Runtime for R - Server Edition versions 1.2.0 and below update to version 1.2.1 or higher\nTIBCO Spotfire Analytics Platform for AWS Marketplace versions 10.4.0 and 10.5.0 update to version 10.5.1 or higher."
          }
        ],
        "source": {
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "4f830c72-39e4-45f6-a99f-78cc01ae04db",
    "assignerShortName": "tibco",
    "cveId": "CVE-2019-11211",
    "datePublished": "2019-09-18T22:21:04.828450Z",
    "dateReserved": "2019-04-12T00:00:00",
    "dateUpdated": "2024-09-17T03:34:08.098Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2019-35781

CVE-2019-11211 (GCVE-0-2019-11211)

Tags

Sightings

Nomenclature