CVE-2017-5533

Name of the Vulnerable Software and Affected Versions TIBCO JasperReports Server version 6.4.0 TIBCO JasperReports Server Community Edition version 6.4.0 TIBCO JasperReports Server for ActiveMatrix BPM version 6.4.0 TIBCO Jaspersoft for AWS with Multi-Tenancy version 6.4.0 TIBCO Jaspersoft Reporting and Analytics for AWS version 6.4.0

Description A vulnerability in the server content cache of the affected software fails to prevent remote access to all the contents of the web application, including key configuration files.

Recommendations For TIBCO JasperReports Server version 6.4.0, update to a version that contains a fix for this issue. For TIBCO JasperReports Server Community Edition version 6.4.0, update to a version that contains a fix for this issue. For TIBCO JasperReports Server for ActiveMatrix BPM version 6.4.0, update to a version that contains a fix for this issue. For TIBCO Jaspersoft for AWS with Multi-Tenancy version 6.4.0, update to a version that contains a fix for this issue. For TIBCO Jaspersoft Reporting and Analytics for AWS version 6.4.0, update to a version that contains a fix for this issue.