Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface.
CPE | Name | Operator | Version |
---|---|---|---|
dolphinscheduler | eq | 1.2.1 | |
dolphinscheduler | eq | 1.2.0 | |
dolphinscheduler | eq | 1.3.1 |