How severe is CVE-2022-25598?

CVE-2022-25598 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-25598

Name: dolphinscheduler
Author: apache

7.5HIGH

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

Publicado: 3/30/2022Actualizado: 11/21/2024

Descripción

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

Análisis IAImpulsado por IA

Productos Afectados

apachedolphinscheduler

Referencias

https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory
https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory