CVE-2021-28830

TIBCO Spotfire Windows Platform Artifact Search vulnerability

Description

The TIBCO Spotfire Server and TIBCO Enterprise Runtime for R components of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Enterprise Runtime for R - Server Edition, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Server, TIBCO Spotfire Server, TIBCO Spotfire Server, TIBCO Spotfire Statistics Services, TIBCO Spotfire Statistics Services, and TIBCO Spotfire Statistics Services contain a vulnerability that theoretically allows a low privileged attacker with local access on the Windows operating system to insert malicious software. The affected component can be abused to execute the malicious software inserted by the attacker with the elevated privileges of the component. This vulnerability results from the affected component searching for run-time artifacts outside of the installation hierarchy. Affected releases are TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition: versions 1.2.4 and below, TIBCO Enterprise Runtime for R - Server Edition: versions 1.3.0 and 1.3.1, TIBCO Enterprise Runtime for R - Server Edition: versions 1.4.0, 1.5.0, and 1.6.0, TIBCO Spotfire Analytics Platform for AWS Marketplace: versions 11.3.0 and below, TIBCO Spotfire Server: versions 10.3.12 and below, TIBCO Spotfire Server: versions 10.4.0, 10.5.0, 10.6.0, 10.6.1, 10.7.0, 10.8.0, 10.8.1, 10.9.0, 10.10.0, 10.10.1, 10.10.2, 10.10.3, and 10.10.4, TIBCO Spotfire Server: versions 11.0.0, 11.1.0, 11.2.0, and 11.3.0, TIBCO Spotfire Statistics Services: versions 10.3.0 and below, TIBCO Spotfire Statistics Services: versions 10.10.0, 10.10.1, and 10.10.2, and TIBCO Spotfire Statistics Services: versions 11.1.0, 11.2.0, and 11.3.0.

Remediation

Solution:

TIBCO has released updated versions of the affected components which address these issues. TIBCO Enterprise Runtime for R - Server Edition versions 1.2.4 and below update to version 1.2.5 or later TIBCO Enterprise Runtime for R - Server Edition versions 1.3.0 and 1.3.1 update to version 1.3.2 or later TIBCO Enterprise Runtime for R - Server Edition versions 1.4.0, 1.5.0, and 1.6.0 update to version 1.7.0 or later TIBCO Spotfire Analytics Platform for AWS Marketplace versions 11.3.0 and below update to version 11.4.0 or later TIBCO Spotfire Server versions 10.3.12 and below update to version 10.3.13 or later TIBCO Spotfire Server versions 10.4.0, 10.5.0, 10.6.0, 10.6.1, 10.7.0, 10.8.0, 10.8.1, 10.9.0, 10.10.0, 10.10.1, 10.10.2, 10.10.3, and 10.10.4 update to version 10.10.5 or later TIBCO Spotfire Server versions 11.0.0, 11.1.0, 11.2.0, and 11.3.0 update to version 11.4.0 or later TIBCO Spotfire Statistics Services versions 10.3.0 and below update to version 10.3.1 or later TIBCO Spotfire Statistics Services versions 10.10.0, 10.10.1, and 10.10.2 update to version 10.10.3 or later TIBCO Spotfire Statistics Services versions 11.1.0, 11.2.0, and 11.3.0 update to version 11.4.0 or later

8.8

CVSS

Severity: High

CVSS 3.1 •

CVSS 2.0 •

EPSS 0.03%

Vendor Advisory tibco.com Vendor Advisory tibco.com

Affected: TIBCO Software Inc. TIBCO Enterprise Runtime for R - Server Edition

Affected: TIBCO Software Inc. TIBCO Spotfire Analytics Platform for AWS Marketplace

Affected: TIBCO Software Inc. TIBCO Spotfire Server

Affected: TIBCO Software Inc. TIBCO Spotfire Statistics Services

References

Link	Tags
http://www.tibco.com/services/support/advisories	vendor advisory
https://www.tibco.com/support/advisories/2021/06/tibco-security-advisory-june-29-2021-tibco-spotfire-2021-28830	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2021-28830?: CVE-2021-28830 has been scored as a high severity vulnerability.
How to fix CVE-2021-28830?: To fix CVE-2021-28830: TIBCO has released updated versions of the affected components which address these issues. TIBCO Enterprise Runtime for R - Server Edition versions 1.2.4 and below update to version 1.2.5 or later TIBCO Enterprise Runtime for R - Server Edition versions 1.3.0 and 1.3.1 update to version 1.3.2 or later TIBCO Enterprise Runtime for R - Server Edition versions 1.4.0, 1.5.0, and 1.6.0 update to version 1.7.0 or later TIBCO Spotfire Analytics Platform for AWS Marketplace versions 11.3.0 and below update to version 11.4.0 or later TIBCO Spotfire Server versions 10.3.12 and below update to version 10.3.13 or later TIBCO Spotfire Server versions 10.4.0, 10.5.0, 10.6.0, 10.6.1, 10.7.0, 10.8.0, 10.8.1, 10.9.0, 10.10.0, 10.10.1, 10.10.2, 10.10.3, and 10.10.4 update to version 10.10.5 or later TIBCO Spotfire Server versions 11.0.0, 11.1.0, 11.2.0, and 11.3.0 update to version 11.4.0 or later TIBCO Spotfire Statistics Services versions 10.3.0 and below update to version 10.3.1 or later TIBCO Spotfire Statistics Services versions 10.10.0, 10.10.1, and 10.10.2 update to version 10.10.3 or later TIBCO Spotfire Statistics Services versions 11.1.0, 11.2.0, and 11.3.0 update to version 11.4.0 or later
Is CVE-2021-28830 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2021-28830 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2021-28830?: CVE-2021-28830 affects TIBCO Software Inc. TIBCO Enterprise Runtime for R - Server Edition, TIBCO Software Inc. TIBCO Enterprise Runtime for R - Server Edition, TIBCO Software Inc. TIBCO Enterprise Runtime for R - Server Edition, TIBCO Software Inc. TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Software Inc. TIBCO Spotfire Server, TIBCO Software Inc. TIBCO Spotfire Server, TIBCO Software Inc. TIBCO Spotfire Server, TIBCO Software Inc. TIBCO Spotfire Statistics Services, TIBCO Software Inc. TIBCO Spotfire Statistics Services, TIBCO Software Inc. TIBCO Spotfire Statistics Services.