Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can execute any shell script server by alert script.


This issue affects Apache DolphinScheduler: before 3.2.2.

Users are recommended to upgrade to version 3.3.1, which fixes the issue.
History

Wed, 03 Sep 2025 09:00:00 +0000

Type Values Removed Values Added
Description Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can execute any shell script server by alert script. This issue affects Apache DolphinScheduler: before 3.2.2. Users are recommended to upgrade to version 3.3.1, which fixes the issue.
Title Apache DolphinScheduler: Alert Script Attack
Weaknesses CWE-20
References

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2025-09-03T08:38:32.442Z

Reserved: 2024-08-07T06:13:30.951Z

Link: CVE-2024-43115

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2025-09-03T09:15:34.047

Modified: 2025-09-03T09:15:34.047

Link: CVE-2024-43115

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.