cvedb.io
CVE-2022-40929
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2022-09-28T18:15:09.813 · Last modified 2026-06-17T05:02:15.423

Summary

XXL-JOB 2.2.0 has a Command execution vulnerability in background tasks. NOTE: this is disputed because the issues/4929 report is about an intended and supported use case (running arbitrary Bash scripts on behalf of users).

Affected products

xuxueli — xxl-job

Does this affect you?

Add your gear to cvedb and we'll alert you only when xuxueli ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.