XSS in Oracle Retail_order_broker

CVE-2020-9410

The report generator component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Serv…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.051 (91.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2020-9410?
CVE-2020-9410 is a high-severity vulnerability in Oracle Retail_order_broker, classified under Cross-site Scripting. CVSS score: 7.3/10. Published 2020-05-20.
How severe is CVE-2020-9410?
High severity. CVSS v3 base score is 7.3 out of 10.