CVE-2026-6009
Jaspersoft Library Deserialisation Vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Java Deserialisation Vulnerability in Jaspersoft Reports Library leads to Remote Code Execution (RCE), potentially allowing code execution on the affected system
| CWE | CWE-502 |
| Vendor | jaspersoft |
| Product | jasperreports library community edition |
| Published | May 19, 2026 |
| Last Updated | May 20, 2026 |
Stay Ahead of the Next One
Get instant alerts for jaspersoft jasperreports library community edition
Be the first to know when new unknown vulnerabilities affecting jaspersoft jasperreports library community edition are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
Jaspersoft / JasperReports Library Community Edition
0 ≤ 7.0.6
Jaspersoft / Jaspersoft Studio Community Edition
0 ≤ 7.0.6
Jaspersoft / JasperReports Server
0 ≤ 10.0.0
Jaspersoft / JasperReports Library Professional
0 ≤ 10.0.0
Jaspersoft / Jaspersoft Studio Professional
0 ≤ 10.0.0
Jaspersoft / JasperReports IO Professional
0 ≤ 10.0.0
Jaspersoft / JasperReports IO At-Scale
0 ≤ 10.0.0
Jaspersoft / JasperReports Web Studio
0 ≤ 10.0.1