CVE-2020-12712

HIGH

SOS JobScheduler <1.13 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2020-12712. PoCs published by Sander Ubink, SanderUbink.

AI-analyzed exploit summary This exploit decrypts stored passwords in SOS JobScheduler by leveraging a weak encryption scheme where the profile name is used as the key. It uses Triple DES (3DES) with ECB mode to recover plaintext passwords from base64-encoded ciphertexts.

Description

A vulnerability based on insecure user/password encryption in the JOE (job editor) component of SOS JobScheduler 1.12 and 1.13 allows attackers to decrypt the user/password that is optionally stored with a user's profile.

Exploits (2)

exploitdb WORKING POC
by Sander Ubink · pythonremotemultiple
https://www.exploit-db.com/exploits/48587

This exploit decrypts stored passwords in SOS JobScheduler by leveraging a weak encryption scheme where the profile name is used as the key. It uses Triple DES (3DES) with ECB mode to recover plaintext passwords from base64-encoded ciphertexts.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: SOS JobScheduler 1.12 - 1.13.3
No auth needed
Prerequisites: Access to the configuration file containing the encrypted password and profile name
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC
by SanderUbink · poc
https://github.com/SanderUbink/CVE-2020-12712

This PoC decrypts passwords stored in SOS JobScheduler (S)FTP configuration files by exploiting weak encryption using the profile name as the key. It uses Triple DES (3DES) with ECB mode and base64 decoding to recover plaintext passwords.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: SOS JobScheduler (version not specified)
No auth needed
Prerequisites: Access to the JobScheduler (S)FTP configuration file containing encrypted passwords and profile names
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory x_refsource_misc
https://www.sos-berlin.com/en/news
Vendor Advisory x_refsource_confirm
https://change.sos-berlin.com/browse/JOE-290
Release Notes, Vendor Advisory x_refsource_misc
https://kb.sos-berlin.com/display/PKB/Vulnerability+Release+1.13.4

Scores

CVSS v3 7.5
EPSS 0.0784
EPSS Percentile 93.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-330
Status published
Products (1)
sos-berlin/jobscheduler 1.12.0 - 1.12.12
Published Jun 11, 2020
Tracked Since Feb 18, 2026