Описание
Apache Dolphin Scheduler has insufficiently protected credentials
When using tasks to read config files, there is a risk of database password disclosure. We recommend you upgrade to version 2.0.6 or higher.
Пакеты
Наименование
org.apache.dolphinscheduler:dolphinscheduler-common
maven
Затронутые версииВерсия исправления
< 2.0.6
2.0.6
Связанные уязвимости
CVSS3: 7.5
nvd
около 3 лет назад
When using tasks to read config files, there is a risk of database password disclosure. We recommend you upgrade to version 2.0.6 or higher.