Xxl-Job · Xxl-Job · CVE-2024-24113
**Name of the Vulnerable Software and Affected Versions**
xxl-job versions prior to 2.4.1
**Description**
The issue is related to a Server-Side Request Forgery (SSRF) vulnerability. This vulnerability allows low-privileged users to control the executor, potentially leading to Remote Code Execution (RCE).
**Recommendations**
For versions prior to 2.4.1, update to version 2.4.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the executor to minimize the risk of exploitation.