Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-49109

Published: 20/02/2024 Updated: 20/02/2024

Vulnerability Summary

Exposure of Remote Code Execution in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: prior to 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.

Vulnerability Trend

Mailing Lists

Full Disclosure: CVE-2023-49109: Remote Code Execution in Apache Dolphinscheduler
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> CVE-2023-49109: Remote Code Execution in Apache Dolphinscheduler <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: ...

References

CWE-94https://github.com/apache/dolphinscheduler/pull/14991https://lists.apache.org/thread/6kgsl93vtqlbdk6otttl0d8wmlspk0m5https://lists.apache.org/thread/5b6yq2gov0fsy9x5dkvo8ws4rr45vkn8http://www.openwall.com/lists/oss-security/2024/02/20/4https://nvd.nist.govhttps://seclists.org/oss-sec/2024/q1/148
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook