CVE-2018-12413

The Schema repository server (tibschemad) component of TIBCO Software Inc.’s TIBCO Messaging – Apache Kafka Distribution – Schema Repository – Community Edition, and TIBCO Messaging – Apache Kafka Distribution – Schema Repository – Enterprise Edition contains a vulnerability which may allow an attacker to perform cross-site request forgery (CSRF) attacks. Affected releases are TIBCO Software Inc. TIBCO Messaging – Apache Kafka Distribution – Schema Repository – Community Edition: 1.0.0, and TIBCO Messaging – Apache Kafka Distribution – Schema Repository – Enterprise Edition: 1.0.0.

Source: CVE-2018-12413