TIBCO Rendezvous Rvrd.DB Information Disclosure Vulnerability

TIBCO Rendezvous Rvrd.DB Information Disclosure Vulnerability

TIBCO Rendezvous is prone to a local information-disclosure vulnerability because the application fails to protect sensitive information from unprivileged users.

An attacker can exploit this issue by gaining access to a world-readable file and extracting authentication credentials from it. Such information could aid in other attacks.

The Windows version of TIBCO Rendezvous version 7.4.11 is vulnerable to this issue; previous versions and other platforms may also be affected.