VDB

CISA-2023-39017

CISA-2023-39017 PUBLISHED

Reported by mitre · Published July 28, 2023

quartz-jobs 2.3.2 and below was discovered to contain a code injection vulnerability in the component org.quartz.jobs.ee.jms.SendQueueMessageJob.execute. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple parties because it is not plausible that untrusted user input would reach the code location where injection must occur.

Affected Products

VendorProductVersions
n/an/an/a
n/an/an/a, *

Timeline

  • Jul 28, 2023 CVE Published
  • Aug 2, 2024 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›