Harish Yadav Posted April 10, 2019 Share Posted April 10, 2019 TIBCO just released the security advisory for business works. https://www.tibco.com/support/advisories/2019/04/tibco-security-advisory... is there any impact on BW 5.x due to this ------------------------------------------------------------------------------------------------------------------------- Systems Affected TIBCO ActiveMatrix BusinessWorks versions 6.4.2 and below The following component is affected: HTTP Connector Description The component listed above contains a vulnerability that theoretically allows unauthenticated HTTP requests to be processed by the BusinessWorks engine even when authentication is required. This possibility is restricted to circumstances where HTTP "Basic Authentication" policy is used in conjunction with an XML Authentication resource. The BusinessWorks engine might instead use credentials from a prior HTTP request for authorization purposes. ------------------------------------------------------------------------------------------------------------------------ Thanks, Harry Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now