Dolphinscheduler Security Vulnerabilities and Issues — Dolphinscheduler CVE List

Lucene search

ApacheDolphinscheduler

3 matches found

CVE•added 2024/08/12 1:38 p.m.•75 views

CVE-2024-30188

File read and write vulnerability in Apache DolphinScheduler , authenticated users can illegally access additional resource files.This issue affects Apache DolphinScheduler: from 3.1.0 before 3.2.2. Users are recommended to upgrade to version 3.2.2, which fixes the issue.

8.8CVSS6.3AI score0.80469EPSS

CVE•added 2024/08/20 8:15 a.m.•61 views

CVE-2024-43202

Exposure of Remote Code Execution in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: before 3.2.2. We recommend users to upgrade Apache DolphinScheduler to version 3.2.2, which fixes the issue.

9.8CVSS7.4AI score0.02919EPSS

CVE•added 2024/08/12 1:38 p.m.•57 views

CVE-2024-29831

Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the server. If you are using the switch task plugin, please upgrade to version 3.2.2.

8.8CVSS6.4AI score0.00287EPSS