Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-51770

Published: 20/02/2024 Updated: 20/02/2024

Vulnerability Summary

Arbitrary File Read Vulnerability in Apache Dolphinscheduler. This issue affects Apache DolphinScheduler: prior to 3.2.1. We recommend users to upgrade Apache DolphinScheduler to version 3.2.1, which fixes the issue.

Github Repositories

https://github.com/Snakinya/Snakinya

Student/CTFer 👋 🌄 苍山负雪,明烛天南 😃 Snakinya 😭 Web Security / Java Security /Network Security 🏚️ Blog:wwwsnakintop Some of my CVEs: CVE-2023-51770(Apache DolphinScheduler) CVE-2023-46227(Apache Inlong) CVE-2023-41578(Jeecg-boot) CVE-2023-42268(Jeecg-boot)

References

CWE-94https://github.com/apache/dolphinscheduler/pull/15433https://lists.apache.org/thread/4t8bdjqnfhldh73gy9p0whlgvnnbtn7ghttps://lists.apache.org/thread/gpks573kn00ofxn7n9gkg6o47d03p5rwhttp://www.openwall.com/lists/oss-security/2024/02/20/2https://nvd.nist.govhttps://github.com/Snakinya/Snakinya
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middleCVE-2024-34558CVE-2024-32674CVE-2024-34351XPath injectionCVE-2023-45866CVE-2024-25528CVE-2024-25517path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook