Skip to main content

Spotfire Enterprise With External Consumers

1 CVEs product

Monthly

CVE-2026-8590 HIGH This Week

Information disclosure with integrity impact in the Spotfire Server modules of Spotfire Enterprise, Spotfire Enterprise with External Consumers, and Spotfire on Kubernetes allows a remote, unauthenticated attacker to obtain sensitive data and alter server-side state once a victim is lured into a passive interaction (UI:P), such as opening a crafted link or analysis. The CVSS 4.0 base score is 8.7 (High) with high confidentiality and integrity impact and low availability impact. There is no public exploit identified at time of analysis and it is not listed in CISA KEV; EPSS was not provided.

Kubernetes Information Disclosure Spotfire Enterprise Spotfire Enterprise With External Consumers Spotfire On Kubernetes
NVD
CVSS 4.0
8.7
EPSS
0.3%
EPSS 0% CVSS 8.7
HIGH This Week

Information disclosure with integrity impact in the Spotfire Server modules of Spotfire Enterprise, Spotfire Enterprise with External Consumers, and Spotfire on Kubernetes allows a remote, unauthenticated attacker to obtain sensitive data and alter server-side state once a victim is lured into a passive interaction (UI:P), such as opening a crafted link or analysis. The CVSS 4.0 base score is 8.7 (High) with high confidentiality and integrity impact and low availability impact. There is no public exploit identified at time of analysis and it is not listed in CISA KEV; EPSS was not provided.

Kubernetes Information Disclosure Spotfire Enterprise +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy