SQL Injection Vulnerability in TIBCO ActiveMatrix BusinessWorks
CVE-2025-3751

7HIGH

Key Information:

Vendor: Tibco
Status: Tibco Activematrix Businessworks
Vendor: CVE Published:; 21 May 2025

What is CVE-2025-3751?

A SQL Injection vulnerability in TIBCO ActiveMatrix BusinessWorks allows attackers to manipulate SQL queries, potentially granting unauthorized access to the database. This flaw exposes sensitive information and can compromise the integrity of data. Prompt mitigation is essential to ensure database security and protect valuable enterprise data.

Affected Version(s)

TIBCO ActiveMatrix BusinessWorks 5.16.1

References

https://community.tibco.com/advisories/tibco-security-adv...

CVSS V4

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2025
Vulnerability Reserved
Apr 16, 2025

Tibco

What is CVE-2025-3751?

Affected Version(s)

References

CVSS V4

Timeline