File read and write vulnerability in Apache DolphinScheduler , authenticated users can illegally access additional resource files.
This issue affects Apache DolphinScheduler: from 3.1.0 before 3.2.2.
Users are recommended to upgrade to version 3.2.2, which fixes the issue.
Metrics
Affected Vendors & Products
References
History
Fri, 23 Aug 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | NVD-CWE-noinfo | |
Metrics |
cvssV3_1
|
Mon, 12 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apache
Apache dolphinscheduler |
|
CPEs | cpe:2.3:a:apache:dolphinscheduler:*:*:*:*:*:*:*:* | |
Vendors & Products |
Apache
Apache dolphinscheduler |
|
References |
|
|
Metrics |
ssvc
|
Sat, 10 Aug 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Fri, 09 Aug 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | File read and write vulnerability in Apache DolphinScheduler , authenticated users can illegally access additional resource files. This issue affects Apache DolphinScheduler: from 3.1.0 before 3.2.2. Users are recommended to upgrade to version 3.2.2, which fixes the issue. | |
Title | Apache DolphinScheduler: Resource File Read And Write Vulnerability | |
Weaknesses | CWE-20 | |
References |
|
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2024-08-09T14:23:27.823Z
Updated: 2024-08-10T14:30:41.361Z
Reserved: 2024-03-25T09:58:24.854Z
Link: CVE-2024-30188
Vulnrichment
Updated: 2024-08-10T14:30:30.920Z
NVD
Status : Analyzed
Published: 2024-08-12T13:38:19.727
Modified: 2024-08-23T18:13:31.747
Link: CVE-2024-30188
Redhat
No data.