{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-28T14:03:18.626","vulnerabilities":[{"cve":{"id":"CVE-2017-5527","sourceIdentifier":"security@tibco.com","published":"2017-05-09T20:29:00.163","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x before 7.6.1, 7.7.x before 7.7.1, and 7.8.x before 7.8.1 and Spotfire Analytics Platform for AWS Marketplace 7.8.0 and earlier contain multiple vulnerabilities which may allow authorized users to perform SQL injection attacks."},{"lang":"es","value":"Spotfire Server versiones 7.0.X y anteriores a 7.0.2, versiones 7.5.x y anteriores a 7.5.1, versiones 7.6.x y anteriores a 7.6.1, versiones 7.7.x y anteriores a 7.7.1, y las versiones 7.8.x y anteriores a 7.8.1, y Spotfire Analytics Platform  versión 7.8.0 y anteriores, de TIBCO para AWS Marketplace, contienen varias vulnerabilidades que pueden permitir a los usuarios autorizados realizar ataques de inyección SQL."}],"metrics":{"cvssMetricV30":[{"source":"security@tibco.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_analytics_platform_for_aws:*:*:*:*:*:*:*:*","versionEndIncluding":"7.8.0","matchCriteriaId":"1614C09A-D958-4F03-AAC7-C84D4D783688"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.0.0:*:*:*:*:*:*:*","matchCriteriaId":"84EC1E4C-EA97-4892-BD26-23690194F693"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.0.1:*:*:*:*:*:*:*","matchCriteriaId":"C801DEF3-64D4-4FE0-A990-C59B2B1F1CD0"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.5.0:*:*:*:*:*:*:*","matchCriteriaId":"DC043E53-0A6D-4CB9-A54F-459561A3ADCC"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.6.0:*:*:*:*:*:*:*","matchCriteriaId":"9BFD4F32-E3FA-46BC-B927-C0333C27B6F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.7.0:*:*:*:*:*:*:*","matchCriteriaId":"4FABB2EC-0B87-4C03-812D-CCF5DFD29CC7"},{"vulnerable":true,"criteria":"cpe:2.3:a:tibco:spotfire_server:7.8.0:*:*:*:*:*:*:*","matchCriteriaId":"C0DEA557-475A-451E-B958-A15B6E7A5E71"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/98398","source":"security@tibco.com"},{"url":"http://www.tibco.com/support/advisories/2017/05/tibco-security-advisory-may-9-2017-tibco-spotfire-server","source":"security@tibco.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/98398","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.tibco.com/support/advisories/2017/05/tibco-security-advisory-may-9-2017-tibco-spotfire-server","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}