Apache DolphinScheduler vulnerable to sensitive information disclosure

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, including database credentials. This issue affects Apache DolphinScheduler versions 3.1.. Users are...

EUVD-2025-209369

An Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists in Apache DolphinScheduler. This vulnerability may allow unauthorized actors to access sensitive information, including database credentials. This issue affects Apache DolphinScheduler versions 3.1.. Users are...

PT-2026-31599

Name of the Vulnerable Software and Affected Versions Apache DolphinScheduler versions 3.1. Description An issue exists in Apache DolphinScheduler that may allow unauthorized actors to access sensitive information, including database credentials. As a temporary workaround, users may restrict...

Linux Distros Unpatched Vulnerability : CVE-2025-48796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GIMP. The GIMP aniloadimage function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more...

SUSE CVE-2025-48796

A flaw was found in GIMP. The GIMP aniloadimage function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more information than the capacity allows. This flaw allows a malicious ANI file to trigger arbitrary code execution...

CVE-2025-48796

creationtimestamp| type| source ---|---|--- 2025-05-27 14:36:40+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114580298063221861 2025-05-27 15:50:55+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq624qs4bu22 2025-05-27...

CVE-2022-48796

creationtimestamp| type| source ---|---|--- 2025-05-15 12:34:21+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16475 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

Linux Distros Unpatched Vulnerability : CVE-2022-48796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommu: Fix potential use-after-free during probe Kasan has reported the following use after...

CVE-2023-48796

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler. The information exposed to unauthorized actors may include sensitive data such as database credentials. Users who can't upgrade to the fixed version can also set environment variable...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2025-1071)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

CVE-2024-48796

creationtimestamp| type| source ---|---|--- 2024-10-14 20:01:14+00:00| seen| https://t.me/cvedetector/7831...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

RHEL 8 : kernel (RHSA-2024:6297)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6297 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cxgb4: avoid accessing registe...

CVE-2022-48796 iommu: Fix potential use-after-free during probe

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix potential use-after-free during probe Kasan has reported the following use after free on dev-iommu. when a device probe fails and it is in process of freeing dev-iommu in deviommufree function, a deferredprobeworkfunc...

CVE-2023-48796

creationtimestamp| type| source ---|---|--- 2023-12-16 14:48:00+00:00| seen| https://t.me/ctinow/155412 2025-11-28 07:40:54+00:00| seen| https://seclists.org/oss-sec/2025/q4/215 2025-11-28 10:24:27+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3m6oo6f2zvs2g 2026-04-09...

CVE-2023-48796

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler. The information exposed to unauthorized actors may include sensitive data such as database credentials. Users who can't upgrade to the fixed version can also set environment variable...

CVE-2023-48796

CVE-2023-48796 affects Apache DolphinScheduler (3.0.0–3.0.1). Root cause: exposure of sensitive information to unauthorized actors via the management endpoints web exposure, enabling leakage such as database credentials. Impact per sources: unauthorized access to sensitive data; high CVSS appears...

Complete Online Job Search System SQL注入漏洞（CNVD-2022-48796）

Complete Online Job Search System is an online job search system. SQL injection vulnerability exists in Complete Online Job Search System, which originates from the /eris/index.php?q=result&searchfor=byfunction page Lack of validation of external input SQL statements. An attacker could use this...