TROYANOSYVIRUS
Back to CVEs

CVE-2017-5529

N/A

Description

JasperReports library components contain an information disclosure vulnerability. This vulnerability includes the theoretical disclosure of any accessible information from the host file system. Affects TIBCO JasperReports Library Community Edition (versions 6.4.0 and below), TIBCO JasperReports Library for ActiveMatrix BPM (versions 6.2.0 and below), TIBCO JasperReports Professional (versions 6.2.1 and below, and 6.3.0), TIBCO JasperReports Server (versions 6.1.1 and below, 6.2.0, 6.2.1, 6.3.0), TIBCO JasperReports Server Community Edition (versions 6.3.0 and below), TIBCO JasperReports Server for ActiveMatrix BPM (versions 6.2.0 and below), TIBCO Jaspersoft for AWS with Multi-Tenancy (versions 6.3.0 and below), TIBCO Jaspersoft Reporting and Analytics for AWS (versions 6.3.0 and below), and TIBCO Jaspersoft Studio for ActiveMatrix BPM (versions 6.2.0 and below).

CVE Details

CVSS v3.1 ScoreN/A
Published6/29/2017
Last Modified4/20/2025
Sourcenvd
Honeypot Sightings0

Affected Products

tibco:jasperreports_library_community_editiontibco:jasperreports_library_for_activematrix_bpmtibco:jasperreports_professionaltibco:jasperreports_servertibco:jasperreports_server_community_editiontibco:jasperreports_server_for_activematrix_bpmtibco:jaspersoft_for_aws_with_multi-tenancytibco:jaspersoft_reporting_and_analytics_for_awstibco:jaspersoft_studio_for_activematrix_bpm

Weaknesses (CWE)

CWE-200

References

http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html(security@tibco.com)
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html(security@tibco.com)
https://www.oracle.com/security-alerts/cpuapr2020.html(security@tibco.com)
https://www.tibco.com/support/advisories/2017/06/tibco-security-advisory-june-28-2017-tibco-jasperreports-server-2017-0(security@tibco.com)
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.oracle.com/security-alerts/cpuapr2020.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.tibco.com/support/advisories/2017/06/tibco-security-advisory-june-28-2017-tibco-jasperreports-server-2017-0(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.