Injection in TIBCO ActiveMatrix BusinessWorks
CVE-2026-3912 Published on March 24, 2026
TIBCO ActiveMatrix BusinessWorks Injection Vulnerability
Injection vulnerabilities due to validation/sanitisation of user-supplied input in ActiveMatrix BusinessWorks and Enterprise Administrator allows information disclosure, including exposure of accessible local files and host system details, and may allow manipulation of application behaviour.
Weakness Type
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
Products Associated with CVE-2026-3912
Want to know whenever a new CVE is published for Tibco Activematrix Businessworks? stack.watch will email you.
Affected Versions
Tibco ActiveMatrix BusinessWorks:- Version 6.12.0 and below HF1 is affected.
- Version 6.11.0 and below HF4 is affected.
- Version 6.10.0 and below HF6 is affected.
- Version 6.9.1 and below HF8 is affected.
- Version 2.4.3 and below HF2 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.