|Category:||Web application abuses|
|Title:||TIBCO JasperReports <= 7.1.1 Access Control Vulnerability|
|Summary:||TIBCO JasperReports is prone to an access control vulnerability in the; administrative UI component.|
TIBCO JasperReports is prone to an access control vulnerability in the
administrative UI component.
JasperReports contains a vulnerability that theoretically allows an
unauthenticated attacker to obtain the permissions of a JasperReports Server 'superuser' for the affected
systems. The attacker can theoretically exploit the vulnerability consistently, remotely, and without
An unauthenticated user may obtain JasperReports Server 'superuser'
permission, and further might be able to execute arbitrary code with the system account that started the
TIBCO JasperReports Server 7.1.1 and prior.
Update to version 7.1.3 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2020-9409|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.