TIBCO JasperReports Server CVE-2018-18809 Directory Traversal Vulnerability

Bugtraq ID: 107351
Class: Input Validation Error
CVE: CVE-2018-18809
Remote: Yes
Local: No
Published: Mar 06 2019 12:00AM
Updated: Mar 06 2019 12:00AM
Credit: Elar Lang of Clarified Security and Sathish Kumar Balakrishnan from Cyber Security Works.
Vulnerable: TIBCO Jaspersoft Reporting and Analytics for AWS 7.1
TIBCO Jaspersoft for AWS with Multi-Tenancy 7.1
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.3
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.2
TIBCO JasperReports Server for ActiveMatrix BPM 6.4
TIBCO JasperReports Server Community Edition 7.1
TIBCO JasperReports Server Community Edition 6.4.3
TIBCO JasperReports Server Community Edition 6.4.2
TIBCO JasperReports Server Community Edition 6.4
TIBCO JasperReports Server 7.1
TIBCO JasperReports Server 6.4.3
TIBCO JasperReports Server 6.4.2
TIBCO JasperReports Server 6.4.1
TIBCO JasperReports Server 6.4
TIBCO JasperReports Server 6.3.4
TIBCO JasperReports Server 6.3.3
TIBCO JasperReports Server 6.3.2
TIBCO JasperReports Server 6.3.1
TIBCO JasperReports Server 6.3
TIBCO JasperReports Library for ActiveMatrix BPM 6.4.21
TIBCO JasperReports Library for ActiveMatrix BPM 6.4.2
TIBCO JasperReports Library for ActiveMatrix BPM 6.4.1
TIBCO JasperReports Library Community Edition 6.7
TIBCO JasperReports Library 7.2
TIBCO JasperReports Library 7.1
TIBCO JasperReports Library 6.4.21
TIBCO JasperReports Library 6.4.2
TIBCO JasperReports Library 6.4.1
TIBCO JasperReports Library 6.4
TIBCO JasperReports Library 6.3.4
TIBCO JasperReports Library 6.3.3
TIBCO JasperReports Library 6.3.2
TIBCO JasperReports Library 6.3.1
TIBCO JasperReports Library 6.3
Not Vulnerable: TIBCO Jaspersoft Reporting and Analytics for AWS 7.1.1
TIBCO Jaspersoft for AWS with Multi-Tenancy 7.1.1
TIBCO JasperReports Server for ActiveMatrix BPM 6.4.4
TIBCO JasperReports Server Community Edition 7.1.1
TIBCO JasperReports Server Community Edition 6.4.4
TIBCO JasperReports Server 7.1.1
TIBCO JasperReports Server 6.4.4
TIBCO JasperReports Server 6.3.5
TIBCO JasperReports Library for ActiveMatrix BPM 6.4.22
TIBCO JasperReports Library Community Edition 6.7.1
TIBCO JasperReports Library 7.2.1
TIBCO JasperReports Library 7.1.1
TIBCO JasperReports Library 6.4.22
TIBCO JasperReports Library 6.3.5


 

Privacy Statement
Copyright 2010, SecurityFocus