2 matches found
CVE-2019-13990
CVE-2019-13990 affects Terracotta Quartz Scheduler within Atlassian Jira Service Management Data Center/Server and related Oracle Fusion Middleware deployments, via XXE in the Terracotta Quartz Scheduler component when parsing a job description. The root cause is an XML External Entity condition ...
CVE-2023-39017
CVE-2023-39017 is a code-injection vulnerability in quartz-jobs (SendQueueMessageJob.execute) with a base CVSS v3.1 score of 9.8. IBM and IBM-related advisories confirm affected products and fixes. Root cause: improper neutralization of user-supplied input in the SendQueueMessageJob, which could ...