Spotfire Analytics Platform
1 CVEs
product
Monthly
Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
RCE
Code Injection
Spotfire Enterprise Runtime For R
Spotfire Statistics Services
Spotfire Analyst
+3
NVD
CVSS 4.0
9.4
EPSS
0.9%
CVE-2025-3115
EPSS 1%
CVSS 9.4
CRITICAL
Act Now
Injection Vulnerabilities: Attackers can inject malicious code, potentially gaining control over the system executing these functions. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
RCE
Code Injection
Spotfire Enterprise Runtime For R
+5
NVD