CVE-2022-41563: XSS
First published: Tue Dec 13 2022(Updated: )
Credit: security@tibco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tibco Jasperreports Server | <=8.0.2 | |
| Tibco Jasperreports Server | <=8.0.2 | |
| TIBCO JasperReports Server - | <=8.0.2 | |
| Tibco Jasperreports Server | <=8.1.0 | |
| Tibco Jasperreports Server | =8.1.0 | |
| Tibco Jasperreports Server | =8.1.0 | |
| TIBCO JasperReports Server - | =8.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-41563?
CVE-2022-41563 is a vulnerability in the Dashboard component of TIBCO JasperReports Server, which could allow an attacker to execute arbitrary code or cause a denial of service.
How severe is CVE-2022-41563?
CVE-2022-41563 is classified as a critical vulnerability with a severity score of 5.4.
Which software is affected by CVE-2022-41563?
CVE-2022-41563 affects TIBCO JasperReports Server, TIBCO JasperReports Server - Developer Edition, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Server for Microsoft Azure versions up to 8.0.2.
How can this vulnerability be exploited?
CVE-2022-41563 can be exploited by an attacker to execute arbitrary code or cause a denial of service through the Dashboard component of TIBCO JasperReports Server.
What can I do to mitigate CVE-2022-41563?
To mitigate CVE-2022-41563, it is recommended to upgrade to a patched version of TIBCO JasperReports Server.
- collector/nvd-index
- vendor/tibco
- canonical/tibco jasperreports server
- version/tibco jasperreports server/8.0.2
- canonical/tibco jasperreports server -
- version/tibco jasperreports server -/8.0.2
- version/tibco jasperreports server/8.1.0
- version/tibco jasperreports server -/8.1.0