CVE-2024-30188

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Aug 12, 2024

Updated: Aug 23, 2024

CWE ID 20

Summary

CVE-2024-30188 is a file read and write vulnerability affecting Apache DolphinScheduler. Authenticated users can unlawfully access additional resource files, posing a security risk. This issue impacts DolphinScheduler versions from 3.1.0 up to and excluding 3.2.2. To mitigate this vulnerability, it is strongly advised to upgrade to version 3.2.2, which has been released to address the issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apache Software Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vEQfz_
https://www.cve.org/CVERecord?id=CVE-2024-30188
https://nvd.nist.gov/vuln/detail/CVE-2024-30188

Back to Vulnerability Database

CVE-2024-30188

CVSS 3.1 Score 8.1 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations