How severe is CVE-2022-25598?

CVE-2022-25598 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-25598

Name: dolphinscheduler
Author: apache

7.5HIGH

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

Published: 3/30/2022Updated: 11/21/2024

Description

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

AI AnalysisPowered by AI

Affected Products

apachedolphinscheduler

References

https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory
https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory