Vulnerabilities

Report: - Apache DolphinScheduler: Users are able to use tenants that are not defined on t... CVE-2026-23902

2026-04-24 0 views admin

CVE ID :CVE-2026-23902 Published : April 24, 2026, 10:56 a.m. | 56 minutes ago Description :Incorrect Authorization vulnerability in Apache DolphinScheduler allows authenticated users with system login permissions to use tenants that are not defined on the platform during workflow execution. This issue affects Apache DolphinScheduler versions prior to 3.4.1. Users are recommended to upgrade to version 3.4.1, which fixes this issue. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-23902

Published

April 24, 2026

Affected Product: Apache

🏷️ Tags

reportapachedolphinscheduleruserstenantsdefined23902publishedcvecve-2026-23902

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: - Apache DolphinScheduler: Users are able to use tenants that are not defined on t... CVE-2026-23902

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-25660 - Authentication bypass for certain API calls - Full Analysis

Report: CVE-2026-21515 - Azure IoT Central Elevation of Privilege Vulnerability - 2025 Update

Report: Essential Guide: CVE-2026-5367 - Ovn: ovn: information disclosure via crafted dhcpv6 packets

Report: Breaking: CVE-2026-5265 - Ovn: ovn: heap over-read in icmp error response generation - security issue

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting