jump-app CVE Vulnerabilities & CVE List (1)

Products (CPE): — CVEs: 1

jump-app vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to jump-app, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 11 of 1 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2026-28809 XML External Entity (XXE) vulnerability in esaml (and its forks) allows an attacker to cause the system to read local files and incorporate their contents into processed SAML documents, and potentially perform SSRF via crafted SAML messages. esaml parses attacker-controlled SAML messages using xmerl_scan:string/2 before signature verification without disabling XML entity expansion. On Erlang/OTP versions before 27, Xmerl allows entities by default, enabling pre-signature XXE attacks. An attacke 6b3ad84c-e1a6-4bf7-a703-f496b71e49db 6.3 0.28% 2026-03-23 2026-06-17
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence