CVE-2023-26222 Information

Description

The Web Application component of TIBCO Software Inc.’s TIBCO EBX and TIBCO Product and Service Catalog powered by TIBCO EBX contains an easily exploitable vulnerability that allows a low privileged attacker with network access to execute a stored XSS on the affected system. Affected releases are TIBCO Software Inc.’s TIBCO EBX: versions 5.9.22 and below versions 6.0.13 and below and TIBCO Product and Service Catalog powered by TIBCO EBX: versions 5.0.0 and below.

Reference

https://www.tibco.com/services/support/advisories