CVE-2024-29831

CVSS V2 None CVSS V3 None
Description
Improper Input Validation vulnerability in Apache DolphinScheduler. An authenticated user can cause arbitrary, unsandboxed javascript to be executed on the server. If you are using the switch task plugin, please upgrade to version 3.2.2.
Overview
  • CVE ID
  • CVE-2024-29831
  • Assigner
  • apache
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-08-09T14:21:48.184Z
  • Last Modified Date
  • 2024-08-09T15:02:51.385Z
References
Reference URL Reference Tags
https://lists.apache.org/thread/x1ch0x5om3srtbnp7rtsvdszho3mdrq0 vendor-advisory
History
Created Old Value New Value Data Type Notes
2024-08-10 13:07:28 Added to TrackCVE