Browse all 7 CVE security advisories affecting Tibco. AI-powered Chinese analysis, POCs, and references for each vulnerability.
TIBCO provides integration and analytics software for enterprise data management and process automation. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from improper input validation and authentication flaws. The company has addressed security through regular patches and updates, though some older products required significant remediation efforts. With seven CVEs currently on record, TIBCO maintains a moderate security profile, emphasizing the importance of timely updates for its integration middleware, which handles critical data flows in many organizations. Security researchers continue to monitor its products for potential weaknesses in complex enterprise environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3912 | TIBCO ActiveMatrix BusinessWorks Injection Vulnerability — ActiveMatrix BusinessWorks | 8.1 | - | 2026-03-24 |
| CVE-2026-3207 | TIBCO BPM Enterprise Remote Code Execution (RCE) Vulnerability — TIBCO BPM EnterpriseCWE-306 | 9.8AI | CriticalAI | 2026-03-17 |
| CVE-2024-4576 | TIBCO EBX File Inclusion Vulnerability — EBX | 9.1AI | CriticalAI | 2024-06-13 |
| CVE-2024-3182 | TIBCO Software Hawk 安全漏洞 — Hawk | 6.5 | Medium | 2024-05-15 |
| CVE-2024-3323 | Reflected Cross Site Scripting (XSS) vulnerability — JasperReports Server | 8.3 | High | 2024-04-17 |
| CVE-2017-3180 | Multiple TIBCO Spotfire components fail to sanitize user-supplied inout and are vulnerable to cross-site scripting — Silver Fabric Enabler for Spotfire Web PlayerCWE-20 | 5.4 | - | 2018-07-24 |
| CVE-2017-3181 | Multiple TIBCO Spotfire components are vulnerable to multiple unspecified SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query — Spotfire AnalystCWE-89 | 9.8 | - | 2018-07-24 |
This page lists every published CVE security advisory associated with Tibco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.