oss-sec mailing list archives
CVE-2022-26885: Apache DolphinScheduler config file read by task risk
From: ShunFeng Cai <caishunfeng () apache org>
Date: Thu, 24 Nov 2022 11:54:38 +0000
Severity: important Description: When using tasks to read config files, there is a risk of database password disclosure. We recommend you upgrade to version 2.0.6 or higher.
Current thread:
- CVE-2022-26885: Apache DolphinScheduler config file read by task risk ShunFeng Cai (Nov 24)