Lucene search
ApacheCVELIST:CVE-2022-26885HistoryNov 24, 2022 - 12:00 a.m.
CVE-2022-26885 Apache DolphinScheduler config file read by task risk
2022-11-2400:00:00
apache
www.cve.org
5
cve-2022-26885
apache dolphinscheduler
config file read
database password disclosure
upgrade
version 2.0.6.
EPSS
0.001
Percentile
46.6%
When using tasks to read config files, there is a risk of database password disclosure. We recommend you upgrade to version 2.0.6 or higher.
CNA Affected
[
{
"vendor": "Apache Software Foundation",
"product": "Apache DolphinScheduler",
"versions": [
{
"version": "Apache DolphinScheduler",
"status": "affected",
"lessThan": "2.0.6",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2022-26885
2022-11-24 16:15:17
Apache Dolphin Scheduler has insufficiently protected credentials
2022-11-24 18:30:28
github
github
Apache Dolphin Scheduler has insufficiently protected credentials
2022-11-24 18:30:28
nvd
nvd
CVE-2022-26885
2022-11-24 16:15:17
cve
cve
CVE-2022-26885
2022-11-24 16:15:17
veracode
veracode
Password Disclosure
2023-08-22 02:31:37
prion
prion
Design/Logic Flaw
2022-11-24 16:15:00