oss-sec mailing list archives
CVE-2023-49068: Apache DolphinScheduler: Information Leakage Vulnerability
From: Zihao Xiang <zihaoxiang () apache org>
Date: Fri, 24 Nov 2023 05:29:43 +0000
Severity: important Affected versions: - Apache DolphinScheduler before 3.2.1 Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache DolphinScheduler.This issue affects Apache DolphinScheduler: 3.2.1. Users are recommended to upgrade to version [FIXED_VERSION], which fixes the issue. References: https://github.com/apache/dolphinscheduler/pull/15192 https://dolphinscheduler.apache.org https://www.cve.org/CVERecord?id=CVE-2023-49068
Current thread:
- CVE-2023-49068: Apache DolphinScheduler: Information Leakage Vulnerability Zihao Xiang (Nov 24)
- Re: CVE-2023-49068: Apache DolphinScheduler: Information Leakage Vulnerability John Helmert III (Nov 25)