Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An XML External Entity (XEE) vulnerability exists in the JOC Cockpit component of SOS JobScheduler 1.12 and 1.13.2 allows attackers to read files from the server via an entity declaration in any of the XML documents that are used to specify the run-time settings of jobs and orders.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SOS JobScheduler JOC Cockpit 安全漏洞
Vulnerability Description
Software- Und Organisations-service SOS JobScheduler是德国Software- und Organisations-Service(Software- Und Organisations-service)公司的一套开源的企业级调度和流程自动化软件。 SOS JobScheduler 1.12和1.13.2版本的JOC Cockpit组件中存在安全漏洞。攻击者利用该漏洞读取服务器上的文件。
CVSS Information
N/A
Vulnerability Type
N/A