CVE-2022-22771 TIBCO JasperReports Library Directory Traversal Vulnerability

🗓️ 15 Mar 2022 17:05:11Reported by tibcoType

TIBCO JasperReports Library Directory Traversal Vulnerabilit

Reporter	Title	Published	Views	Family All 15
ATTACKERKB	CVE-2022-22771	15 Mar 202217:00	–	attackerkb
Circl	CVE-2022-22771	15 Mar 202219:19	–	circl
CNNVD	TIBCO Software JasperReports Server 路径遍历漏洞	15 Mar 202200:00	–	cnnvd
CVE	CVE-2022-22771	15 Mar 202217:05	–	cve
Debian CVE	CVE-2022-22771	15 Mar 202217:05	–	debiancve
EUVD	EUVD-2022-27914	3 Oct 202520:07	–	euvd
NCSC	Vulnerability fixed in Tibco JasperReports	16 Mar 202200:00	–	ncsc
NVD	CVE-2022-22771	15 Mar 202217:15	–	nvd
OSV	BIT-JASPERREPORTS-2022-22771	6 Mar 202410:56	–	osv
OSV	CVE-2022-22771	15 Mar 202217:15	–	osv

[
  {
    "product": "TIBCO JasperReports Library",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.0"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Library for ActiveMatrix BPM",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.0"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.0"
      },
      {
        "status": "affected",
        "version": "7.9.1"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server for AWS Marketplace",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.0"
      },
      {
        "status": "affected",
        "version": "7.9.1"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server for ActiveMatrix BPM",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.0"
      },
      {
        "status": "affected",
        "version": "7.9.1"
      }
    ]
  },
  {
    "product": "TIBCO JasperReports Server for Microsoft Azure",
    "vendor": "TIBCO Software Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "7.9.1"
      }
    ]
  }
]

Source	Link
tibco	www.tibco.com/services/support/advisories
tibco	www.tibco.com/support/advisories/2022/03/tibco-security-advisory-march-15-2022-tibco-jasperreports-library-2022-22771

15 Mar 2022 18:06Current

8.8High risk

Vulners AI Score8.8

CVSS 39.9

EPSS0.02096