CVE-2020-6856

Published: Feb 6, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An XML External Entity (XEE) vulnerability exists in the JOC Cockpit component of SOS JobScheduler 1.12 and 1.13.2 allows attackers to read files from the server via an entity declaration in any of the XML documents that are used to specify the run-time settings of jobs and orders.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://change.sos-berlin.com/browse/JOC-853

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-6856

Description

Affected Products

References