CVEs-PoC/2020/CVE-2020-9409.md

### [CVE-2020-9409](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9409)
![](https://img.shields.io/static/v1?label=Product&message=TIBCO%20JasperReports%20Server%20for%20AWS%20Marketplace&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TIBCO%20JasperReports%20Server%20for%20ActiveMatrix%20BPM&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TIBCO%20JasperReports%20Server&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%3D%207.1.1%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=The%20impact%20of%20this%20vulnerability%20includes%20the%20possibility%20that%20an%20unauthenticated%20user%20obtains%20JasperReports%20Server%20%22superuser%22%20permission%2C%20and%20further%20might%20be%20able%20to%20execute%20arbitrary%20code%20with%20the%20system%20account%20that%20started%20the%20affected%20component.&color=brighgreen)

### Description

The administrative UI component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server for AWS Marketplace, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vulnerability that theoretically allows an unauthenticated attacker to obtain the permissions of a JasperReports Server "superuser" for the affected systems. The attacker can theoretically exploit the vulnerability consistently, remotely, and without authenticating. Affected releases are TIBCO Software Inc.'s TIBCO JasperReports Server: versions 7.1.1 and below, TIBCO JasperReports Server for AWS Marketplace: versions 7.1.1 and below, and TIBCO JasperReports Server for ActiveMatrix BPM: versions 7.1.1 and below.

### POC

#### Reference
- https://www.oracle.com/security-alerts/cpuoct2020.html

#### Github
- https://github.com/Live-Hack-CVE/CVE-2020-9409