Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/a:softwareag:quartz:2.1.7
There are 1 matching records.
Displaying matches 1 through 1.
Vuln ID Summary CVSS Severity
CVE-2019-13990

initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.

Published: July 26, 2019; 3:15:11 PM -0400
V3.1: 9.8 CRITICAL
V2.0: 7.5 HIGH