CVE-2018-18809 Security Vulnerability in JasperReports


Does this security vulnerability apply to both jasperreports.jar and jasperreports-javaflow.jar?  Currently using v6.5.0 and planning to upgrade to v6.7.1, but only if the javaflow component is also compromised.

rod.giles's picture
Joined: Jun 10 2016 - 2:19pm
Last seen: 1 month 2 weeks ago

1 Answer:


Issues and method to resolve are listed in TIBCO Jaspersoft site. Mainly, it consists of versioning up to the latest version.

hozawa's picture
Joined: Apr 24 2010 - 4:31pm
Last seen: 4 hours 11 min ago