3 matches found
Security Bulletin: TIBCO JasperReports Vulnerabilities Affect IBM Sterling B2B Integrator (CVE-2020-9410, CVE-2018-18809)
Summary IBM Sterling B2B Integrator has integrated multiple security vulnerability fixes from TIBCO JasperReports, please see list of CVEs for vulnerability details Vulnerability Details CVEID: CVE-2020-9410 DESCRIPTION: TIBCO JasperReports Library and JasperReports Server are vulnerable to...
Security Bulletin: Multiple JasperReports Vulnerabilities Affect IBM Control Center (CVE-2020-9410, CVE-2018-18809)
Summary JasperReports Library and JasperReports Server are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. Vulnerability Details CVEID: CVE-2020-9410 DESCRIPTION: TIBCO JasperReports Library and JasperReports Server are vulnerable to cross-site scripting,...
CVE-2020-9410
The CVE-2020-9410 issue affects TIBCO JasperReports components (Library, ActiveMatrix BPM variants, Server variants) and is caused by insufficient input validation leading to HTML injection in the report output. This can let a remote attacker who views a maliciously crafted report execute scripts...