The FTL Server component of TIBCO Software Inc.s TIBCO FTL - Enterprise Edition contains a vulnerability that allows a low privileged attacker with network access to execute a privilege escalation on the affected ftlserver. Affected releases are TIBCO Software Inc.s TIBCO FTL - Enterprise Edition: versions 6.10.1 and below.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.