How severe is CVE-2022-25598?

CVE-2022-25598 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-25598

Name: dolphinscheduler
Author: apache

7.5HIGH

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

Publicado: 3/30/2022Atualizado: 11/21/2024

Descrição

Apache DolphinScheduler user registration is vulnerable to Regular express Denial of Service (ReDoS) attacks, Apache DolphinScheduler users should upgrade to version 2.0.5 or higher.

Análise IADesenvolvido por IA

Produtos Afetados

apachedolphinscheduler

Referências

https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory
https://lists.apache.org/thread/hwnw7xr969sg5nv84wz75nfr2c76fl93
Mailing ListVendor Advisory