Описание
Uncontrolled Resource Consumption in Apache DolphinScheduler
Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks. Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.
Пакеты
Наименование
org.apache.dolphinscheduler:dolphinscheduler
maven
Затронутые версииВерсия исправления
< 2.0.5
2.0.5
Наименование
apache-dolphinscheduler
pip
Затронутые версииВерсия исправления
< 2.0.5
2.0.5
Связанные уязвимости
CVSS3: 7.5
nvd
почти 4 года назад
Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.