HackAndPwn
Security & Vulnerability Researcher / Professional Penetration Tester

CVE-2020-9415 - TIBCO - Arbitrary File Download

TIBCO Data Virtualization Server contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affected system. The user must be authenticated and have privileges required to monitor the server in an operational capacity.

[TIBCO Security Advisory]https://www.tibco.com/support/advisories/2020/08/tibco-security-advisory-august-18-2020-tibco-data-virtualization)


buy me a coffee