CVE-2018-5430

🗓️ 17 Apr 2018 18:00:00Reported by tibcoType

cve🔗 web.nvd.nist.gov👁 627 Views🌐 WEB

TIBCO JasperReports Server web flows vulnerability allows read-only access to application content

Reporter	Title	Published	Views	Family All 20
0day.today	JasperReports - Authenticated File Read Vulnerability	15 May 201800:00	–	zdt
ATTACKERKB	TIBCO JasperReports Server Information Disclosure Vulnerability	17 Apr 201800:00	–	attackerkb
Circl	CVE-2018-5430	14 Jun 202321:10	–	circl
CISA KEV Catalog	TIBCO JasperReports Server Information Disclosure Vulnerability	29 Dec 202200:00	–	cisa_kev
CNVD	Multiple TIBCO Products Spring web flows Component Information Disclosure Vulnerability	19 Apr 201800:00	–	cnvd
Cvelist	CVE-2018-5430 TIBCO JasperReports Server Information Disclosure Vulnerability	17 Apr 201818:00	–	cvelist
Debian CVE	CVE-2018-5430	17 Apr 201818:00	–	debiancve
NVD	CVE-2018-5430	17 Apr 201818:29	–	nvd
OSV	CVE-2018-5430	17 Apr 201818:29	–	osv
OSV	UBUNTU-CVE-2018-5430	17 Apr 201818:29	–	osv

NVD

Node

tibco jasperreports_serverRange≤6.2.4

tibco jasperreports_serverRange≤6.4.2activematrix_bpm

tibco jasperreports_serverRange≤6.4.2community

tibco jasperreports_serverMatch6.3.0

tibco jasperreports_serverMatch6.3.2

tibco jasperreports_serverMatch6.3.3

tibco jasperreports_serverMatch6.4.0

tibco jasperreports_serverMatch6.4.2

Node

tibco jaspersoftRange≤6.4.2aws_with_multi-tenancy

tibco jaspersoft_reporting_and_analyticsRange≤6.4.2aws

[
  {
    "product": "TIBCO JasperReports Server",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "6.2.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "6.3.0"
      },
      {
        "status": "affected",
        "version": "6.3.2"
      },
      {
        "status": "affected",
        "version": "6.3.3"
      },
      {
        "status": "affected",
        "version": "6.4.0"
      },
      {
        "status": "affected",
        "version": "6.4.2"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server Community Edition",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "6.4.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server for ActiveMatrix BPM",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "6.4.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Jaspersoft for AWS with Multi-Tenancy",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "6.4.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "TIBCO Jaspersoft Reporting and Analytics for AWS",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "lessThanOrEqual": "6.4.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
rhinosecuritylabs	www.rhinosecuritylabs.com/application-security/authenticated-file-read-vulnerability-in-jasperreports/
exploit-db	www.exploit-db.com/exploits/44623/
tibco	www.tibco.com/support/advisories/2018/04/tibco-security-advisory-april-17-2018-tibco-jasperreports-2018-5430
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog

Parameter	Position	Path	Description	CWE
_flowId	query param	/jasperserver/flow.html	Directory traversal via flow/page parameters leading to potential local file access (read-only).	CWE-200, CWE-22
page	query param	/jasperserver/flow.html	Directory traversal via flow/page parameters leading to potential local file access (read-only).	CWE-200, CWE-22
{param}	query param	/jasperserver-pro/___________?{param}=..	Proof-of-concept traversal to reach privileged admin/export functionality.	CWE-200, CWE-22
_flowId	query param	/jasperserver-pro/flow.html	Flow-based traversal to access AWS configuration pages.	CWE-200, CWE-22
page	query param	/jasperserver-pro/flow.html	Flow-based traversal to access AWS configuration pages.	CWE-200, CWE-22
_flowId	query param	/jasperserver-pro/flow.html	Local file read via flow/page parameter using traversal to configuration files (e.g., js.jdbc.properties).	CWE-200, CWE-22
page	query param	/jasperserver-pro/flow.html	Local file read via flow/page parameter using traversal to configuration files (e.g., js.jdbc.properties).	CWE-200, CWE-22
_flowId	query param	/jasperserver-pro/flow.html	Local file inclusion via flow/page parameter to load arbitrary JSP (admin modules).	CWE-200, CWE-22
page	query param	/jasperserver-pro/flow.html	Local file inclusion via flow/page parameter to load arbitrary JSP (admin modules).	CWE-200, CWE-22

03 Nov 2025 18:58Current

8High risk

Vulners AI Score8

CVSS 24

CVSS 3.18.8

CVSS 37.7

EPSS0.41417

SSVC

tibco jasperreports server web application security vulnerability read-only access nvd cve-2018-5430