QwikSec

Security Database

CVE

CWE

Training

CVE-2024-30188

Published: Aug 9, 2024

Modified: Mar 13, 2025

PUBLISHED

Description

File read and write vulnerability in Apache DolphinScheduler , authenticated users can illegally access additional resource files. This issue affects Apache DolphinScheduler: from 3.1.0 before 3.2.2. Users are recommended to upgrade to version 3.2.2, which fixes the issue.

Vendor	Product	Versions
Apache Software Foundation	Apache DolphinScheduler	affected `3.1.0 - < 3.2.2`

Weaknesses (CWE)

References

https://lists.apache.org/thread/tbrt42mnr42bq6scxwt6bjr3s2pwyd07

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.