Jasperreports server
This hub aggregates every CVE we track for Jasperreports server, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
25
CVEs tracked
7
Critical
13
High
2
In CISA KEV
Severity distribution
HIGH13CRITICAL7MEDIUM5
Monthly trend
1
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Jasperreports server.
- CVE-2025-10492Jaspersoft Library Deserialisation Vulnerability9.8
- CVE-2024-3325JasperReports Server Driver upload vulnerability7.2
- CVE-2024-3323Reflected Cross Site Scripting (XSS) vulnerability8.3
- CVE-2022-41563TIBCO JasperReports Server Stored XSS Vulnerability9.0
- CVE-2022-41562TIBCO JasperReports Server XSS Issue on Roles8.4
- CVE-2022-41561TIBCO JasperReports Server RCE Vulnerability9.1
- CVE-2022-22773TIBCO JasperReports Server Reflected Cross Site Scripting (XSS) vulnerability7.7
- CVE-2022-22771TIBCO JasperReports Library Directory Traversal Vulnerability8.8
- CVE-2021-35496TIBCO JasperReports XML Eternal Entity (XXE) vulnerability7.5
- CVE-2021-35495TIBCO JasperReports FTP Password exposed9.0
- CVE-2021-35494TIBCO JasperReports unauthorized access to temporary object5.7
- CVE-2020-9410TIBCO JasperReports Library7.3
- CVE-2020-9409TIBCO JasperReports Server Fails To Enforce Access Restrictions9.8
- CVE-2019-8986TIBCO JasperReports Server XML Entity Expansion Vulnerability7.7
- CVE-2018-18808TIBCO JasperReports Server Privilege Escalation Via Race Condition8.8
Product normalization is registry-driven with AI assist and human review. How it works