Xxl-Job · Xxl-Job · CVE-2024-42681
**Name of the Vulnerable Software and Affected Versions**
xxl-job version 2.4.1
**Description**
The issue allows a remote attacker to execute arbitrary code via the Sub-Task ID component due to insecure permissions.
**Recommendations**
For xxl-job version 2.4.1, consider disabling the Sub-Task ID component until a patch is available to prevent remote code execution.