First published: Fri Jul 26 2019(Updated: )
initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/rhvm-dependencies | <0:4.4.0-1.el8e | 0:4.4.0-1.el8e |
maven/org.quartz-scheduler:quartz | <2.3.2 | 2.3.2 |
redhat/quartz | <2.3.2 | 2.3.2 |
Softwareag Quartz | <2.3.2 | |
Oracle Apache Batik Mapviewer | =12.2.0.1 | |
Oracle Apache Batik Mapviewer | =18c | |
Oracle Apache Batik Mapviewer | =19c | |
Oracle Banking Enterprise Originations | =2.7.0 | |
Oracle Banking Enterprise Originations | =2.8.0 | |
Oracle Banking Enterprise Product Manufacturing | =2.7.0 | |
Oracle Banking Enterprise Product Manufacturing | =2.8.0 | |
Oracle Banking Payments | >=14.1.0<=14.4.0 | |
Oracle Communications Ip Service Activator | =7.3.0 | |
Oracle Communications Ip Service Activator | =7.4.0 | |
Oracle Communications Session Route Manager | >=8.2.0<=8.2.2 | |
Oracle Customer Management And Segmentation Foundation | =18.0 | |
Oracle Documaker | >=12.6.0<=12.6.4 | |
Oracle Enterprise Manager Base Platform | =13.2.1.0 | |
Oracle Enterprise Manager Ops Center | =12.4.0.0 | |
Oracle FLEXCUBE Investor Servicing | =12.1.0 | |
Oracle FLEXCUBE Investor Servicing | =12.3.0 | |
Oracle FLEXCUBE Investor Servicing | =12.4.0 | |
Oracle FLEXCUBE Investor Servicing | =14.1.0 | |
Oracle FLEXCUBE Investor Servicing | =14.4.0 | |
Oracle FLEXCUBE Private Banking | =12.0.0 | |
Oracle FLEXCUBE Private Banking | =12.1.0 | |
Oracle Fusion Middleware MapViewer | =12.2.1.3.0 | |
Oracle Google Guava Mapviewer | =12.2.0.1 | |
Oracle Google Guava Mapviewer | =18c | |
Oracle Google Guava Mapviewer | =19c | |
Oracle Hyperion Infrastructure Technology | =11.1.2.4 | |
Oracle Jd Edwards Enterpriseone Orchestrator | <=9.2.5.3 | |
Oracle Primavera Unifier | >=17.7<=17.12 | |
Oracle Primavera Unifier | =16.1 | |
Oracle Primavera Unifier | =16.2 | |
Oracle Primavera Unifier | =18.8 | |
Oracle Retail Back Office | =14.1 | |
Oracle Retail Central Office | =14.1 | |
Oracle Retail Integration Bus | =15.0 | |
Oracle Retail Integration Bus | =16.0 | |
Oracle Retail Order Broker | =15.0 | |
Oracle Retail Order Broker | =16.0 | |
Oracle Retail Order Broker | =18.0 | |
Oracle Retail Order Broker | =19.0 | |
Oracle Retail Point-of-Service | =14.1 | |
Oracle Retail Returns Management | =14.1 | |
Oracle Retail Xstore Point of Service | =15.0 | |
Oracle Retail Xstore Point of Service | =16.0 | |
Oracle Retail Xstore Point of Service | =17.0 | |
Oracle Retail Xstore Point of Service | =18.0 | |
Oracle Retail Xstore Point of Service | =19.0 | |
Oracle Terracotta Quartz Scheduler Mapviewer | =12.2.0.1 | |
Oracle Terracotta Quartz Scheduler Mapviewer | =18c | |
Oracle Terracotta Quartz Scheduler Mapviewer | =19c | |
Oracle WebCenter Sites | =12.2.1.3.0 | |
Oracle WebCenter Sites | =12.2.1.4.0 | |
Apache TomEE | =7.1.3 | |
Netapp Active Iq Unified Manager Linux | ||
Netapp Active Iq Unified Manager Vmware Vsphere | ||
Netapp Active Iq Unified Manager Windows | ||
Netapp Cloud Secure Agent | ||
IBM Data Risk Manager | <=2.0.6 | |
Atlassian Jira Service Management | =4.20.0 | |
Atlassian Jira Service Management | =4.20.0 | |
Atlassian Jira Service Management | =4.20.1 | |
Atlassian Jira Service Management | =4.20.1 | |
Atlassian Jira Service Management | =4.20.2 | |
Atlassian Jira Service Management | =4.20.2 | |
Atlassian Jira Service Management | =4.20.3 | |
Atlassian Jira Service Management | =4.20.3 | |
Atlassian Jira Service Management | =4.20.4 | |
Atlassian Jira Service Management | =4.20.4 | |
Atlassian Jira Service Management | =4.20.5 | |
Atlassian Jira Service Management | =4.20.5 | |
Atlassian Jira Service Management | =4.20.6 | |
Atlassian Jira Service Management | =4.20.6 | |
Atlassian Jira Service Management | =4.20.7 | |
Atlassian Jira Service Management | =4.20.7 | |
Atlassian Jira Service Management | =4.20.8 | |
Atlassian Jira Service Management | =4.20.8 | |
Atlassian Jira Service Management | =4.20.9 | |
Atlassian Jira Service Management | =4.20.9 | |
Atlassian Jira Service Management | =4.20.10 | |
Atlassian Jira Service Management | =4.20.10 | |
Atlassian Jira Service Management | =4.20.11 | |
Atlassian Jira Service Management | =4.20.11 | |
Atlassian Jira Service Management | =4.20.12 | |
Atlassian Jira Service Management | =4.20.12 | |
Atlassian Jira Service Management | =4.20.13 | |
Atlassian Jira Service Management | =4.20.13 | |
Atlassian Jira Service Management | =4.20.14 | |
Atlassian Jira Service Management | =4.20.14 | |
Atlassian Jira Service Management | =4.20.15 | |
Atlassian Jira Service Management | =4.20.15 | |
Atlassian Jira Service Management | =4.20.16 | |
Atlassian Jira Service Management | =4.20.16 | |
Atlassian Jira Service Management | =4.20.17 | |
Atlassian Jira Service Management | =4.20.17 | |
Atlassian Jira Service Management | =4.20.18 | |
Atlassian Jira Service Management | =4.20.18 | |
Atlassian Jira Service Management | =4.20.19 | |
Atlassian Jira Service Management | =4.20.19 | |
Atlassian Jira Service Management | =4.20.20 | |
Atlassian Jira Service Management | =4.20.20 | |
Atlassian Jira Service Management | =4.20.21 | |
Atlassian Jira Service Management | =4.20.21 | |
Atlassian Jira Service Management | =4.20.22 | |
Atlassian Jira Service Management | =4.20.22 | |
Atlassian Jira Service Management | =4.20.23 | |
Atlassian Jira Service Management | =4.20.23 | |
Atlassian Jira Service Management | =4.20.24 | |
Atlassian Jira Service Management | =4.20.24 | |
Atlassian Jira Service Management | =4.20.25 | |
Atlassian Jira Service Management | =4.20.25 | |
Atlassian Jira Service Management | =4.21.0 | |
Atlassian Jira Service Management | =4.21.0 | |
Atlassian Jira Service Management | =4.21.1 | |
Atlassian Jira Service Management | =4.21.1 | |
Atlassian Jira Service Management | =4.22.0 | |
Atlassian Jira Service Management | =4.22.0 | |
Atlassian Jira Service Management | =4.22.1 | |
Atlassian Jira Service Management | =4.22.1 | |
Atlassian Jira Service Management | =4.22.2 | |
Atlassian Jira Service Management | =4.22.2 | |
Atlassian Jira Service Management | =4.22.3 | |
Atlassian Jira Service Management | =4.22.3 | |
Atlassian Jira Service Management | =4.22.4 | |
Atlassian Jira Service Management | =4.22.4 | |
Atlassian Jira Service Management | =4.22.6 | |
Atlassian Jira Service Management | =4.22.6 | |
Atlassian Jira Service Management | =5.0.0 | |
Atlassian Jira Service Management | =5.0.0 | |
Atlassian Jira Service Management | =5.1.0 | |
Atlassian Jira Service Management | =5.1.0 | |
Atlassian Jira Service Management | =5.1.1 | |
Atlassian Jira Service Management | =5.1.1 | |
Atlassian Jira Service Management | =5.2.0 | |
Atlassian Jira Service Management | =5.2.0 | |
Atlassian Jira Service Management | =5.2.1 | |
Atlassian Jira Service Management | =5.2.1 | |
Atlassian Jira Service Management | =5.3.0 | |
Atlassian Jira Service Management | =5.3.0 | |
Atlassian Jira Service Management | =5.3.1 | |
Atlassian Jira Service Management | =5.3.1 | |
Atlassian Jira Service Management | =5.3.2 | |
Atlassian Jira Service Management | =5.3.2 | |
Atlassian Jira Service Management | =5.3.3 | |
Atlassian Jira Service Management | =5.3.3 | |
Atlassian Jira Service Management | =5.4.0 | |
Atlassian Jira Service Management | =5.4.0 | |
Atlassian Jira Service Management | =5.4.1 | |
Atlassian Jira Service Management | =5.4.1 | |
Atlassian Jira Service Management | =5.4.2 | |
Atlassian Jira Service Management | =5.4.2 | |
Atlassian Jira Service Management | =5.4.3 | |
Atlassian Jira Service Management | =5.4.3 | |
Atlassian Jira Service Management | =5.4.4 | |
Atlassian Jira Service Management | =5.4.4 | |
Atlassian Jira Service Management | =5.4.5 | |
Atlassian Jira Service Management | =5.4.5 | |
Atlassian Jira Service Management | =5.4.6 | |
Atlassian Jira Service Management | =5.4.6 | |
Atlassian Jira Service Management | =5.4.7 | |
Atlassian Jira Service Management | =5.4.7 | |
Atlassian Jira Service Management | =5.4.8 | |
Atlassian Jira Service Management | =5.4.8 | |
Atlassian Jira Service Management | =5.4.9 | |
Atlassian Jira Service Management | =5.4.9 | |
Atlassian Jira Service Management | =5.5.1 | |
Atlassian Jira Service Management | =5.5.1 | |
Atlassian Jira Service Management | =5.6.0 | |
Atlassian Jira Service Management | =5.6.0 | |
Atlassian Jira Service Management | =5.7.0 | |
Atlassian Jira Service Management | =5.7.0 | |
Atlassian Jira Service Management | =5.7.1 | |
Atlassian Jira Service Management | =5.7.1 | |
Atlassian Jira Service Management | =5.8.0 | |
Atlassian Jira Service Management | =5.8.0 | |
Atlassian Jira Service Management | =5.8.1 | |
Atlassian Jira Service Management | =5.8.1 | |
Atlassian Jira Service Management | =5.9.0 | |
Atlassian Jira Service Management | =5.9.0 | |
Atlassian Jira Service Management | =5.10.0 | |
Atlassian Jira Service Management | =5.10.0 | |
<2.3.2 | ||
=12.2.0.1 | ||
=18c | ||
=19c | ||
=2.7.0 | ||
=2.8.0 | ||
=2.7.0 | ||
=2.8.0 | ||
>=14.1.0<=14.4.0 | ||
=7.3.0 | ||
=7.4.0 | ||
>=8.2.0<=8.2.2 | ||
=18.0 | ||
>=12.6.0<=12.6.4 | ||
=13.2.1.0 | ||
=12.4.0.0 | ||
=12.1.0 | ||
=12.3.0 | ||
=12.4.0 | ||
=14.1.0 | ||
=14.4.0 | ||
=12.0.0 | ||
=12.1.0 | ||
=12.2.1.3.0 | ||
=12.2.0.1 | ||
=18c | ||
=19c | ||
=11.1.2.4 | ||
<=9.2.5.3 | ||
>=17.7<=17.12 | ||
=16.1 | ||
=16.2 | ||
=18.8 | ||
=14.1 | ||
=14.1 | ||
=15.0 | ||
=16.0 | ||
=15.0 | ||
=16.0 | ||
=18.0 | ||
=19.0 | ||
=14.1 | ||
=14.1 | ||
=15.0 | ||
=16.0 | ||
=17.0 | ||
=18.0 | ||
=19.0 | ||
=12.2.0.1 | ||
=18c | ||
=19c | ||
=12.2.1.3.0 | ||
=12.2.1.4.0 | ||
=7.1.3 | ||
=4.20.0 | ||
=4.20.0 | ||
=4.20.1 | ||
=4.20.1 | ||
=4.20.2 | ||
=4.20.2 | ||
=4.20.3 | ||
=4.20.3 | ||
=4.20.4 | ||
=4.20.4 | ||
=4.20.5 | ||
=4.20.5 | ||
=4.20.6 | ||
=4.20.6 | ||
=4.20.7 | ||
=4.20.7 | ||
=4.20.8 | ||
=4.20.8 | ||
=4.20.9 | ||
=4.20.9 | ||
=4.20.10 | ||
=4.20.10 | ||
=4.20.11 | ||
=4.20.11 | ||
=4.20.12 | ||
=4.20.12 | ||
=4.20.13 | ||
=4.20.13 | ||
=4.20.14 | ||
=4.20.14 | ||
=4.20.15 | ||
=4.20.15 | ||
=4.20.16 | ||
=4.20.16 | ||
=4.20.17 | ||
=4.20.17 | ||
=4.20.18 | ||
=4.20.18 | ||
=4.20.19 | ||
=4.20.19 | ||
=4.20.20 | ||
=4.20.20 | ||
=4.20.21 | ||
=4.20.21 | ||
=4.20.22 | ||
=4.20.22 | ||
=4.20.23 | ||
=4.20.23 | ||
=4.20.24 | ||
=4.20.24 | ||
=4.20.25 | ||
=4.20.25 | ||
=4.21.0 | ||
=4.21.0 | ||
=4.21.1 | ||
=4.21.1 | ||
=4.22.0 | ||
=4.22.0 | ||
=4.22.1 | ||
=4.22.1 | ||
=4.22.2 | ||
=4.22.2 | ||
=4.22.3 | ||
=4.22.3 | ||
=4.22.4 | ||
=4.22.4 | ||
=4.22.6 | ||
=4.22.6 | ||
=5.0.0 | ||
=5.0.0 | ||
=5.1.0 | ||
=5.1.0 | ||
=5.1.1 | ||
=5.1.1 | ||
=5.2.0 | ||
=5.2.0 | ||
=5.2.1 | ||
=5.2.1 | ||
=5.3.0 | ||
=5.3.0 | ||
=5.3.1 | ||
=5.3.1 | ||
=5.3.2 | ||
=5.3.2 | ||
=5.3.3 | ||
=5.3.3 | ||
=5.4.0 | ||
=5.4.0 | ||
=5.4.1 | ||
=5.4.1 | ||
=5.4.2 | ||
=5.4.2 | ||
=5.4.3 | ||
=5.4.3 | ||
=5.4.4 | ||
=5.4.4 | ||
=5.4.5 | ||
=5.4.5 | ||
=5.4.6 | ||
=5.4.6 | ||
=5.4.7 | ||
=5.4.7 | ||
=5.4.8 | ||
=5.4.8 | ||
=5.4.9 | ||
=5.4.9 | ||
=5.5.1 | ||
=5.5.1 | ||
=5.6.0 | ||
=5.6.0 | ||
=5.7.0 | ||
=5.7.0 | ||
=5.7.1 | ||
=5.7.1 | ||
=5.8.0 | ||
=5.8.0 | ||
=5.8.1 | ||
=5.8.1 | ||
=5.9.0 | ||
=5.9.0 | ||
=5.10.0 | ||
=5.10.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Appears in the following advisories)