Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/11 7:11 p.m.26 views

CVE-2025-3115

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Additionally, insufficient validation of filenames during file uploads can enable attackers to upload and execute malicious files, leading to arbitrary code...

9.8CVSS7.5AI score0.00611EPSS
Exploits0References3
Circl
Circl
added 2025/04/09 7:10 p.m.12 views

CVE-2025-3115

creationtimestamp| type| source ---|---|--- 2025-04-09 19:10:57+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114309585778441730 2025-04-09 20:57:11+00:00| seen| https://t.me/cvedetector/22569 2025-04-11 04:40:31+00:00| seen|...

9.8CVSS5.3AI score0.00611EPSS
Exploits0References4
NVD
NVD
added 2025/04/09 6:15 p.m.24 views

CVE-2025-3115

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Additionally, insufficient validation of filenames during file uploads can enable attackers to upload and execute malicious files, leading to arbitrary code...

9.8CVSS0.00611EPSS
Exploits0References1
CVE
CVE
added 2025/04/09 6:12 p.m.82 views

CVE-2025-3115

CVE-2025-3115 involves TIBCO Spotfire data functions with injection vulnerabilities and insufficient validation of filenames during file uploads, enabling potential arbitrary code execution. Connected sources indicate this is a high-severity issue (CVSS 3.1/4.0, CRITICAL) affecting Spotfire compo...

9.8CVSS7.9AI score0.00611EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/09 6:12 p.m.12 views

CVE-2025-3115 Spotfire Data Function Vulnerability

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Additionally, insufficient validation of filenames during file uploads can enable attackers to upload and execute malicious files, leading to arbitrary code...

9.4CVSS7.8AI score0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/09 6:12 p.m.33 views

CVE-2025-3115 Spotfire Data Function Vulnerability

Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Additionally, insufficient validation of filenames during file uploads can enable attackers to upload and execute malicious files, leading to arbitrary code...

9.4CVSS0.00611EPSS
Exploits0References1
Rows per page
Query Builder