CVE-2024-29831
published 2024-08-12CVE-2024-29831: Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the server. If you are using the switch task plugin, please upgrade to version 3.2.2.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | dolphinscheduler | < 3.2.2 | 3.2.2 |
| apache_software_foundation | apache_dolphinscheduler | <= 3.2.1 | — |