CVE-2025-3751 — SQL Injection in Software INC Tibco Activematrix Businessworks

CWE-89 — SQL Injection3 documents3 sources

Severity

7.0HIGHNVD

EPSS

0.2%

top 61.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tibco Software INC Tibco Activematrix Businessworks

Timeline

PublishedMay 21

Description

The component listed above contains a vulnerability that can be exploited by an attacker to perform a SQL Injection attack. This could lead to unauthorised access to the database and exposure of sensitive information

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N

Affected Packages1 packages

▶CVEListV5tibco_software_inc/tibco_activematrix_businessworks5.16.1 — HF-01

🔴Vulnerability Details

CVEList

TIBCO ActiveMatrix BusinessWorks SQL Injection Vulnerability↗2025-05-21

▶

GHSA

GHSA-c49m-468j-4qm9: The component listed above contains a vulnerability that can be exploited by an attacker to perform a SQL Injection attack↗2025-05-21

▶