Products | Versions |
---|---|
TIBCO JasperReports Server | 8.0.1 and below |
TIBCO JasperReports IO - At-Scale Edition | - |
TIBCO JasperReports Server for ActiveMatrix BPM | 7.9.2 and below |
TIBCO JasperReports Server Reflected Cross Site Scripting (XSS) vulnerability
Original release date: May 17, 2022
Last revised: ---
Source: TIBCO Software Inc.
Description
The component listed above contains difficult to exploit Reflected Cross Site
Scripting (XSS) vulnerabilities that allow a low privileged attacker with
network access to execute scripts targeting the affected system or the
victim's local system.
Impact
In the worst case, if the victim is a privileged administrator, successful
execution of these vulnerabilities can result in an attacker gaining full
administrative access to the affected system.
CVSS v3 Base Score: 7.7 (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N)
You can prevent browser rendering of the rest-api responses in html & xml format by restricting content type headers.
To configure this restriction in:
- open .../jasperserver-pro/WEB-INF/applicationContext-rest-services.xml
- find <util:map id="contentTypeMapping">
- change the following entries:
<entry key="html" value="text/html"/>
<entry key="jrxml" value="application/xml"/>
<entry key="jrtx" value="application/xml"/>
<entry key="xml" value="application/xml"/>
<entry key="accessGrantSchema" value="application/xml"/>
<entry key="olapMondrianSchema" value="application/xml"/>
to:
<entry key="html" value="application/html"/>
<entry key="jrxml" value="application/repository.file+jrxml"/>
<entry key="jrtx" value="application/repository.file+jrtx"/>
<entry key="xml" value="application/repository.file+xml"/>
<entry key="accessGrantSchema" value="application/repository.file+accessGrantSchema"/>
<entry key="olapMondrianSchema" value="application/repository.file+olapMondrianSchema"/>
To configure this restriction in:
- open .../jasperserver/WEB-INF/applicationContext-rest-services.xml
- find <util:map id="contentTypeMapping">
- change the following entries:
<entry key="html" value="text/html"/>
<entry key="jrxml" value="application/xml"/>
<entry key="jrtx" value="application/xml"/>
<entry key="xml" value="application/xml"/>
<entry key="accessGrantSchema" value="application/xml"/>
<entry key="olapMondrianSchema" value="application/xml"/>
to:
<entry key="html" value="application/html"/>
<entry key="jrxml" value="application/repository.file+jrxml"/>
<entry key="jrtx" value="application/repository.file+jrtx"/>
<entry key="xml" value="application/repository.file+xml"/>
<entry key="accessGrantSchema" value="application/repository.file+accessGrantSchema"/>
<entry key="olapMondrianSchema" value="application/repository.file+olapMondrianSchema"/>