https://bugzilla.redhat.com/show_bug.cgi?id=1801149
--- Doc Text *updated* by Eric Christensen sparks@redhat.com --- A flaw was found in quartz through version 2.3.0. A XXE attack is possible in the Terracotta Quartz Scheduler using a job description. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.