TIBCO Enterprise Message Service Windows Platform < 8.6.0 Multiple Vulnerabilities

high Nessus Plugin ID 169881

Synopsis

TIBCO Enterprise Message Service Windows Platform running on the remote host is affected by multiple vulnerabilities.

Description

The version of TIBCO Enterprise Message Service Windows Platform running on the remote host is pior to 8.6.0. It is, therefore, affected by multiple vulnerabilities:

- A vulnerability that theoretically allows a low privileged attacker with local access on some versions of the Windows operating system to insert malicious software. The affected component can be abused to execute the malicious software inserted by the attacker with the elevated privileges of the component. This vulnerability results from a lack of access restrictions on certain files and/or folders in the installation. (CVE-2021-28821)

- A vulnerability that theoretically allows a low privileged attacker with local access on the Windows operating system to insert malicious software. The affected component can be abused to execute the malicious software inserted by the attacker with the elevated privileges of the component. This vulnerability results from the affected component searching for run-time artifacts outside of the installation hierarchy. (CVE-2021-28822)

Note that Nessus has not tested for these issues but has instead relied only on the service's self-reported version number.

Solution

Update to TIBCO Enterprise Message Service 8.6.0 or later

See Also

http://www.nessus.org/u?c09252df

http://www.nessus.org/u?c735937a

Plugin Details

Severity: High

ID: 169881

File Name: tibco_ems_8_6_0.nasl

Version: 1.1

Type: remote

Family: Misc.

Published: 1/11/2023

Updated: 1/12/2023

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Temporal Score: 3.4

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2021-28822

CVSS v3

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:tibco:enterprise_message_service

Required KB Items: installed_sw/TIBCO Enterprise Message Service

Exploit Ease: No known exploits are available

Patch Publication Date: 3/23/2021

Vulnerability Publication Date: 3/23/2021

Reference Information

CVE: CVE-2021-28821, CVE-2021-28822