We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-39017



Assignermitre
Reserved2023-07-25
Published2023-07-28
Updated2024-08-02

Description

quartz-jobs 2.3.2 and below was discovered to contain a code injection vulnerability in the component org.quartz.jobs.ee.jms.SendQueueMessageJob.execute. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple parties because it is not plausible that untrusted user input would reach the code location where injection must occur.

References

https://github.com/quartz-scheduler/quartz/issues/943

cve.org CVE-2023-39017

nvd.nist.gov CVE-2023-39017

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-39017
Support options

Helpdesk Telegram

Subscribe to our newsletter to learn more about our work.