PT-2024-30368 · Apache · Apache Dolphinscheduler
An4Er
·
Published
2024-08-20
·
Updated
2024-11-26
·
CVE-2024-43202
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apache DolphinScheduler versions prior to 3.2.2
Description
A critical issue has been identified in Apache DolphinScheduler, allowing hackers to execute remote code. This poses a significant security risk. The issue affects versions prior to 3.2.2.
Recommendations
To resolve the issue, upgrade Apache DolphinScheduler to version 3.2.2, which fixes the problem.
Fix
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Apache Dolphinscheduler