Количество 2
Количество 2
CVE-2023-49250
Because the HttpUtils class did not verify certificates, an attacker that could perform a Man-in-the-Middle (MITM) attack on outgoing https connections could impersonate the server. This issue affects Apache DolphinScheduler: before 3.2.0. Users are recommended to upgrade to version 3.2.1, which fixes the issue.
GHSA-37gx-jqx9-fwmg
Improper Certificate Validation in Apache DolphinScheduler
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-49250 Because the HttpUtils class did not verify certificates, an attacker that could perform a Man-in-the-Middle (MITM) attack on outgoing https connections could impersonate the server. This issue affects Apache DolphinScheduler: before 3.2.0. Users are recommended to upgrade to version 3.2.1, which fixes the issue. | CVSS3: 7.3 | 0% Низкий | почти 2 года назад |
| GHSA-37gx-jqx9-fwmg Improper Certificate Validation in Apache DolphinScheduler | CVSS3: 7.3 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу