CVE-2015-5711

medium

Description

TIBCO Managed File Transfer Internet Server before 7.2.5, Managed File Transfer Command Center before 7.2.5, Slingshot before 1.9.4, and Vault before 2.0.1 allow remote authenticated users to obtain sensitive information via a crafted HTTP request.

References

http://www.tibco.com/mk/advisory.jsp

http://www.tibco.com/assets/blt423f06fbac6ee0c6/2015-003-advisory.txt

http://www.securitytracker.com/id/1033678

Details

Source: Mitre, NVD

Published: 2015-09-29

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N