Tibco Spotfire Analyst — known CVE vulnerabilities
Every CVE whose affected-product data names Tibco Spotfire Analyst, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2025-3115 — CVSS 9.8 (critical): Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions…
CVE-2017-3181 — CVSS 9.8 (critical): Multiple TIBCO Products are prone to multiple unspecified SQL-injection vulnerabilities because it fails to properly sanitize user-supplied…
CVE-2018-5435 — CVSS 9.6 (critical): The TIBCO Spotfire Client and TIBCO Spotfire Web Player Client components of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire…
CVE-2020-9416 — CVSS 8.2 (high): The Spotfire client component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO…
CVE-2019-17334 — CVSS 8.0 (high): The Visualizations component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO…
CVE-2021-23273 — CVSS 8.0 (high): The Spotfire client component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO…
CVE-2015-4554 — CVSS 7.5 (high): Multiple unspecified vulnerabilities in TIBCO Spotfire Client and Spotfire Web Player Client in Spotfire Analyst before 5.5.2, 6.0.x before…
CVE-2018-5437 — CVSS 6.8 (medium): The TIBCO Spotfire Client and TIBCO Spotfire Web Player Client components of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire…
CVE-2023-26220 — CVSS 5.4 (medium): The Spotfire Library component of TIBCO Software Inc.'s Spotfire Analyst and Spotfire Server contains an easily exploitable vulnerability…
CVE-2017-3180 — CVSS 5.4 (medium): Multiple TIBCO Products are prone to multiple unspecified cross-site scripting vulnerabilities because it fails to properly sanitize…
CVE-2023-26221 — CVSS 5.0 (medium): The Spotfire Connectors component of TIBCO Software Inc.'s Spotfire Analyst, Spotfire Server, and Spotfire for AWS Marketplace contains an…