GA Announcement Jaspersoft 9.0 Patch 3

On behalf of Broadcom, we appreciate your business and the opportunity to provide you with high-quality, innovative software and services. As part of our ongoing commitment to customer success, we regularly release updated versions of our products. Today, we are pleased to announce that the Jaspersoft 9.0 Patch 3 is now available, which addresses a critical Java deserialization vulnerability (CWE-502 / CVE-2026-6009) that could lead to Remote Code Execution (RCE) by allowing an attacker to execute arbitrary code remotely via malicious data.

If you are an On-Premise customer, you can download your copy of the Jaspersoft 9 Security Patch online at Broadcom Support, where you can also utilize Broadcom’s case management system. If you are a SaaS customer, you will be notified about the upgrade. If you have any questions or require assistance, please contact CA Support. To connect, learn, and share with other customers, join and participate in our Clarity Community page.

Please navigate to the Broadcom Support Portal to review the latest support policies.

Thank you again for your business.

Sincerely,

Clarity Product Team