JasperSoft Report Server CVE-2024-10271
Article ID: 384970
Updated On: 12-27-2024
Products
Clarity PPM On Premise
Clarity PPM SaaS
Issue/Introduction
A directory traversal vulnerability has been identified in JasperReports Server, potentially allowing unauthenticated users to access sensitive information on the host system. An attacker could send a specially-crafted URL request to view files on the server.
This is defined as CVE-2024-10271
Environment
JasperSoft Reports Server 9.0.0
Resolution
A hotfix/Patch is being worked upon for On Premise and SaaS Clarity Customers.
Feedback
Yes
No
Powered by
