How severe is CVE-2022-25598?

CVE-2022-25598 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-25598

Name: dolphinscheduler
Author: apache

7.5HIGH

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

公開日: 3/30/2022更新日: 11/21/2024

説明

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

AI分析AIによる分析

影響を受ける製品

apachedolphinscheduler

参照

https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory
https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory