CVE-2023-49109

2024-02-2010:15:07

CWE-94

[email protected]

web.nvd.nist.gov

2664

cve-2023-49109

remote code execution

apache dolphinscheduler

security

nvd

upgrade

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.3%

JSON

Exposure of Remote Code Execution in Apache Dolphinscheduler.

This issue affects Apache DolphinScheduler: before 3.2.1.

We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.

Affected configurations

Vulners

Node

apachedolphinschedulerRange≤3.2.1

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Apache DolphinScheduler",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThan": "3.2.1",
        "status": "affected",
        "version": "3.0.0",
        "versionType": "semver"
      }
    ]
  }
]