Filter

Versions

1.2.0
3
1.2.1
2
3.0.0
2
3.1.0
2
1.3.1
1

Apache DolphinSchedulerIn DolphinScheduler 1.2.0 and 1.2.1, with mysql connectorj a remote code execution vulnerability exi…

critical
9.8
First published (updated )
CVE-2020-11974

Apache DolphinSchedulerApache DolphinScheduler prior to 2.0.5 have command execution vulnerability

critical
9.8
First published (updated )
CVE-2022-45462

Apache DolphinSchedulerApache DolphinScheduler: Remote command execution Vulnerability in script alert plugin

critical
9.8
First published (updated )
CVE-2022-45875

Apache DolphinSchedulerDolphinScheduler mysql jdbc connector parameters deserialize remote code execution

high
8.8
First published (updated )
CVE-2021-27644

maven/org.apache.dolphinscheduler:dolphinscheduler-masterApache DolphinScheduler: Arbitrary js execute as root for authenticated users

high
8.8
First published (updated )
CVE-2023-49299

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

maven/org.apache.dolphinscheduler:dolphinschedulerApache DolphinScheduler: Resource File Read And Write Vulnerability

high
8.1
First published (updated )
CVE-2024-30188

maven/org.apache.dolphinscheduler:dolphinschedulerApache DolphinScheduler: Arbitrary File Read Vulnerability

high
7.5
First published (updated )
CVE-2023-51770

Apache DolphinSchedulerApache DolphinScheduler user registration is vulnerable to ReDoS attacks

high
7.5
First published (updated )
CVE-2022-25598

Apache DolphinSchedulerApache DolphinScheduler config file read by task risk

high
7.5
First published (updated )
CVE-2022-26885

Apache DolphinSchedulerApache dolphinscheduler sensitive information disclosure

high
7.5
First published (updated )
CVE-2023-48796

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

maven/org.apache.dolphinscheduler:dolphinscheduler-apiApache DolphinScheduler: Information Leakage Vulnerability

high
7.5
First published (updated )
CVE-2023-49068

Apache DolphinSchedulerApache DolphinScheduler (incubating) Permission vulnerability

medium
6.5
First published (updated )
CVE-2020-13922

Apache DolphinSchedulerApache DolphinScheduler prior to 3.0.0 allows path traversal

medium
6.5
First published (updated )
CVE-2022-34662

Apache DolphinSchedulerApache DolphinScheduler exposes files without authentication

medium
6.5
First published (updated )
CVE-2022-26884

Apache DolphinSchedulerApache DolphinScheduler: Authenticated users could delete UDFs in resource center they were not authorized for

medium
6.5
First published (updated )
CVE-2023-49620

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache DolphinSchedulerApache DolphinScheduler 3.0.0 to 3.1.1 python gateway has improper authentication

medium
4.3
First published (updated )
CVE-2023-25601

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203