Vulnerability Details CVE-2022-26884
Users can read any files by log server, Apache DolphinScheduler users should upgrade to version 2.0.6 or higher.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.0%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-26884
-
cpe:2.3:a:apache:dolphinscheduler:1.0.0
-
cpe:2.3:a:apache:dolphinscheduler:1.0.1
-
cpe:2.3:a:apache:dolphinscheduler:1.0.2
-
cpe:2.3:a:apache:dolphinscheduler:1.0.3
-
cpe:2.3:a:apache:dolphinscheduler:1.0.4
-
cpe:2.3:a:apache:dolphinscheduler:1.0.5
-
cpe:2.3:a:apache:dolphinscheduler:1.1.0
-
cpe:2.3:a:apache:dolphinscheduler:1.2.0
-
cpe:2.3:a:apache:dolphinscheduler:1.2.1
-
cpe:2.3:a:apache:dolphinscheduler:1.3.0
-
cpe:2.3:a:apache:dolphinscheduler:1.3.1
-
cpe:2.3:a:apache:dolphinscheduler:1.3.2
-
cpe:2.3:a:apache:dolphinscheduler:1.3.3
-
cpe:2.3:a:apache:dolphinscheduler:1.3.4
-
cpe:2.3:a:apache:dolphinscheduler:1.3.6
-
cpe:2.3:a:apache:dolphinscheduler:1.3.8
-
cpe:2.3:a:apache:dolphinscheduler:1.3.9
-
cpe:2.3:a:apache:dolphinscheduler:2.0.0
-
cpe:2.3:a:apache:dolphinscheduler:2.0.1
-
cpe:2.3:a:apache:dolphinscheduler:2.0.2
-
cpe:2.3:a:apache:dolphinscheduler:2.0.3
-
cpe:2.3:a:apache:dolphinscheduler:2.0.4
-
cpe:2.3:a:apache:dolphinscheduler:2.0.5