CVE-2025-3115

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Additionally, insufficient validation of filenames during file uploads can enable attackers to upload and execute malicious files, leading to arbitrary code execution

Published: Apr 9, 2025
Updated: Apr 30, 2025
CVE: CVE-2025-3115
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
tibco / spotfire_enterprise_runtime_for_r	-	6.1.5
tibco / spotfire_statistics_services	-	14.0.7
tibco / spotfire_statistics_services	14.1.0	14.1.0.x
tibco / spotfire_statistics_services	14.2.0	14.2.0.x
tibco / spotfire_statistics_services	14.3.0	14.3.0.x
tibco / spotfire_statistics_services	14.4.0	14.4.0.x
tibco / spotfire_statistics_services	14.4.1	14.4.1.x
tibco / spotfire_enterprise_runtime_for_r	-	1.17.7
tibco / spotfire_enterprise_runtime_for_r	1.18.0	1.18.0.x
tibco / spotfire_enterprise_runtime_for_r	1.19.0	1.19.0.x
tibco / spotfire_enterprise_runtime_for_r	1.20.0	1.20.0.x
tibco / spotfire_enterprise_runtime_for_r	1.21.0	1.21.0.x
tibco / spotfire_enterprise_runtime_for_r	1.21.1	1.21.1.x
tibco / spotfire_analyst	-	14.0.6
tibco / spotfire_analyst	14.1.0	14.1.0.x
tibco / spotfire_analyst	14.2.0	14.2.0.x
tibco / spotfire_analyst	14.3.0	14.3.0.x
tibco / spotfire_analyst	14.4.0	14.4.0.x
tibco / spotfire_analyst	14.4.1	14.4.1.x
tibco / spotfire_deployment_kit	-	14.0.7
tibco / spotfire_deployment_kit	14.1.0	14.1.0.x
tibco / spotfire_deployment_kit	14.2.0	14.2.0.x
tibco / spotfire_deployment_kit	14.3.0	14.3.0.x
tibco / spotfire_deployment_kit	14.4.0	14.4.0.x
tibco / spotfire_deployment_kit	14.4.1	14.4.1.x
tibco / spotfire_desktop	-	14.4.2
tibco / spotfire_analytics_platform	-	14.4.2

https://community.spotfire.com/articles/spotfire/spotfire-security-advisory-april-08-2025-spotfire-cve-2025-3114-r3484/

Vulnerability Database

289,784

CVE-2025-3115