Tibco Spotfire Web Player — known CVE vulnerabilities
Every CVE whose affected-product data names Tibco Spotfire Web Player, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2015-4554 — CVSS 7.5 (high): Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5.5.2, 6.0.x before…
CVE-2013-2373 — CVSS 6.4 (medium): The Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before 4.5.1, and 5.0.x before 5.0.1 does not…
CVE-2017-3180 — CVSS 5.4 (medium): Multiple TIBCO Products are prone to multiple unspecified cross-site scripting vulnerabilities because it fails to properly sanitize…
CVE-2013-2372 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Engine in TIBCO Spotfire Web Player 3.3.x before 3.3.3, 4.0.x before 4.0.3, 4.5.x before…
CVE-2014-7195 — CVSS 4.0 (medium): Spotfire Web Player Engine in TIBCO Spotfire Web Player 6.0.x before 6.0.2 and 6.5.x before 6.5.2, Spotfire Deployment Kit 6.0.x before…