Security Advisory

CVE-2023-49250

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-20 10:00:06

Last updated 2025-02-13 17:18:36

Assigner apache

State PUBLISHED

Description

Because the HttpUtils class did not verify certificates, an attacker that could perform a Man-in-the-Middle (MITM) attack on outgoing https connections could impersonate the server. This issue affects Apache DolphinScheduler: before 3.2.0. Users are recommended to upgrade to version 3.2.1, which fixes the issue.

← Browse all CVEs View on cve.org ↗