2 matches found
CVE-2019-8986
The CVE-2019-8986 entry concerns a vulnerability in the SOAP API component of TIBCO JasperReports Server and JasperReports Server for ActiveMatrix BPM. Affected releases include JasperReports Server up to 6.3.4, 6.4.0–6.4.3 and ActiveMatrix BPM variant up to 6.4.3. The issue may allow a malicious...
CVE-2019-8986 TIBCO JasperReports Server XML Entity Expansion Vulnerability
The SOAP API component vulnerability of TIBCO Software Inc.'s TIBCO JasperReports Server, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vulnerability that may allow a malicious authenticated user to copy text files from the host operating system. Affected releases are TIBCO...