Описание
Apache DolphinScheduler vulnerable to Path Traversal
When users add resources to the resource center with a relation path, this vulnerability will cause path traversal issues for logged-in users. Users should upgrade to version 3.0.0 to avoid this issue.
Пакеты
Наименование
org.apache.dolphinscheduler:dolphinscheduler
maven
Затронутые версииВерсия исправления
< 3.0.0
3.0.0
Связанные уязвимости
CVSS3: 6.5
nvd
больше 3 лет назад
When users add resources to the resource center with a relation path will cause path traversal issues and only for logged-in users. You could upgrade to version 3.0.0 or higher