Share:

CVE-2020-13922 - Apache Dolphinscheduler

January 11, 2021

Moderate 6.5

Versions of Apache DolphinScheduler prior to 1.3.2 allowed an ordinary user under any tenant to override another users password through the API interface.

Affected software

Apache Dolphinscheduler

Reference links

https://www.mail-archive.com/announce@apache.org/msg06076.html

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.