Search CVE reports


Toggle filters

31 – 40 of 112 results


CVE-2018-5430

High priority
Needs evaluation

The Spring web flows of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO...

1 affected package

jasperreports

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasperreports Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2018-5429

Medium priority
Needs evaluation

A vulnerability in the report scripting component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO JasperReports Library,...

1 affected package

jasperreports

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasperreports Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2018-9252

Negligible priority
Vulnerable

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.

1 affected package

jasper

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasper Not in release Not in release Not in release Not in release Vulnerable
Show less packages

CVE-2018-9055

Negligible priority
Vulnerable

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

1 affected package

jasper

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasper Not in release Not in release Not in release Not in release Vulnerable
Show less packages

CVE-2016-9600

Low priority

Some fixes available 2 of 4

JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash.

1 affected package

jasper

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasper Not in release Fixed
Show less packages

CVE-2017-5533

Medium priority
Needs evaluation

A vulnerability in the server content cache of TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO...

1 affected package

jasperreports

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasperreports Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2017-5532

Medium priority
Needs evaluation

A vulnerability in the report renderer component of TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO JasperReports Library, TIBCO JasperReports...

1 affected package

jasperreports

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasperreports Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2017-14941

Medium priority
Needs evaluation

Jaspersoft JasperReports 4.7 suffers from a saved credential disclosure vulnerability, which allows a remote authenticated user to retrieve stored Data Source passwords by accessing flow.html and reading the HTML source code of...

1 affected package

jasperreports

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasperreports Not in release Not in release Not in release Needs evaluation Needs evaluation
Show less packages

CVE-2017-14229

Medium priority
Not affected

There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec.c of Jasper 2.0.13. It will lead to a remote denial of service attack.

1 affected package

jasper

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasper Not in release Not in release Not affected
Show less packages

CVE-2017-14132

Negligible priority
Vulnerable

JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29,...

1 affected package

jasper

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
jasper Not in release Not in release Not in release Not in release Vulnerable
Show less packages