CVE-2026-3207

Summary

Configuration issue in Java Management Extensions (JMX) in TIBCO BPM Enterprise version 4.x allows unauthorised access.

Affected Software

VendorProductVersion RangeStatus
TIBCOTIBCO BPM Enterprise4.3 < 5affected

Weaknesses

  • CWE-306: CWE-306 Missing authentication for critical function

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References