oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE-2023-49068: Apache DolphinScheduler: Information Leakage Vulnerability

From: Zihao Xiang <zihaoxiang () apache org>
Date: Fri, 24 Nov 2023 05:29:43 +0000
Severity: important

Affected versions:

- Apache DolphinScheduler before 3.2.1

Description:

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler.This issue affects 
Apache DolphinScheduler: 3.2.1.

Users are recommended to upgrade to version [FIXED_VERSION], which fixes the issue.

References:

https://github.com/apache/dolphinscheduler/pull/15192
https://dolphinscheduler.apache.org
https://www.cve.org/CVERecord?id=CVE-2023-49068
Previous By Date Next
Previous By Thread Next

Current thread: