Yajsw · Yajsw · CVE-2020-6958
**Name of the Vulnerable Software and Affected Versions**
Yet Another Java Service Wrapper (YAJSW) version 12.14
**Description**
The issue allows attackers to exfiltrate data from remote hosts and potentially cause denial-of-service due to an XXE vulnerability in JnlpSupport.
**Recommendations**
For YAJSW version 12.14, at the moment, there is no information about a newer version that contains a fix for this vulnerability.