Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Medium
Fix Version/s: None
Affects Version/s: El Alto Release
Component/s: CMSO
Labels:
None

CMSO Security/Vulnerability CVE-2019- 13990 quartz

initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.

org.quartz- scheduler

quartz

2.3.1

CVE-2019- 13990

Ineffective

relates to

OPTFRA-641 Perform Software Composition Analysis - Vulnerability tables

Closed

mentioned in: Page Loading...

Assignee:: jf9860

Reporter:: jf9860

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 01/Nov/19 9:50 PM

Updated:: 06/Aug/20 1:07 PM

Resolved:: 06/Aug/20 1:07 PM