Loading
The Splus Server component of TIBCO Software Inc.'s TIBCO Spotfire Statistics Services contains a vulnerability that allows an unauthenticated remote attacker to upload or modify arbitrary files within the web server directory on the affected system. Affected releases are TIBCO Software Inc.'s TIBCO Spotfire Statistics Services: versions 11.4.10 and below, versions 11.5.0, 11.6.0, 11.6.1, 11.6.2, 11.7.0, 11.8.0, 11.8.1, 12.0.0, 12.0.1, and 12.0.2, versions 12.1.0 and 12.2.0.
Use CWE-434, Tibco vendor hub and Spotfire Statistics Services product page to widen CVE-2023-29268 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2018-12410, CVE-2025-3115 and CVE-2021-28830 for nearby disclosures in the same product family.