CVE search results

31 – 40 of 112 results

Detailed view

Sort by:

CVE-2018-5430

High priority

Needs evaluation

The Spring web flows of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2018-5429

Medium priority

Needs evaluation

A vulnerability in the report scripting component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO JasperReports Library,...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2018-9252

Negligible priority

Vulnerable

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_abstorelstepsize in libjasper/jpc/jpc_enc.c.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2018-9055

Negligible priority

Vulnerable

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in libjasper/jpc/jpc_math.c.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

CVE-2016-9600

Low priority

Some fixes available 2 of 4

JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	—	Not in release	Fixed

CVE-2017-5533

Medium priority

Needs evaluation

A vulnerability in the server content cache of TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2017-5532

Medium priority

Needs evaluation

A vulnerability in the report renderer component of TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO JasperReports Library, TIBCO JasperReports...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2017-14941

Medium priority

Needs evaluation

Jaspersoft JasperReports 4.7 suffers from a saved credential disclosure vulnerability, which allows a remote authenticated user to retrieve stored Data Source passwords by accessing flow.html and reading the HTML source code of...

1 affected packages

jasperreports

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasperreports	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation

CVE-2017-14229

Medium priority

Not affected

There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec.c of Jasper 2.0.13. It will lead to a remote denial of service attack.

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	—	—	Not in release	Not in release	Not affected

CVE-2017-14132

Negligible priority

Vulnerable

JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1.900.17, 1.900.18, 1.900.19, 1.900.20, 1.900.21, 1.900.22, 1.900.23, 1.900.24, 1.900.25, 1.900.26, 1.900.27, 1.900.28, 1.900.29,...

1 affected packages

jasper

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
jasper	Not in release	Not in release	Not in release	Not in release	Vulnerable

Export to JSON

Results by page:

Search CVE reports