Session Fixation Apache DolphinScheduler before version 3.2.0, which session is still valid after the password change.
Users are recommended to upgrade to version 3.2.1, which fixes this issue.
References
Configurations
No configuration.
History
29 Aug 2024, 20:35
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-384 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
23 Feb 2024, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
20 Feb 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
20 Feb 2024, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-20 10:15
Updated : 2024-08-29 20:35
NVD link : CVE-2023-50270
Mitre link : CVE-2023-50270
CVE.ORG link : CVE-2023-50270
JSON object : View
Products Affected
No product.