How severe is CVE-2022-25598?

CVE-2022-25598 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-25598

Name: dolphinscheduler
Author: apache

7.5HIGH

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

게시됨: 3/30/2022업데이트됨: 11/21/2024

설명

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

AI 분석AI 기반

영향받는 제품

apachedolphinscheduler

참조

https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory
https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory