by @mhzcyber
27 Apr 2023

CVE-2022-45875: Apache DolphinScheduler Remote Code Execution PoC

by @mhzcyber
27 Apr 2023

CVE-2022-45875: Apache DolphinScheduler Remote Code Execution PoC

CVEs

9.8 Critical Severity

Apps

*.*
3.1.7.*
3.1.8.*
3.1.6.*
3.1.5.*
3.1.9.*
3.0.5.*
3.0.6.*
1.3.9.*
3.1.4.*

Screenshots from the blog posts

blog-posts/images/clgzblrxl5bvk0jpe0lhj7j5d.gifblog-posts/images/clgzblrxl5bvk0jpe0lhj7j5d.gif

Summary

In a previous analysis blog, I explained how the Apache DolphinScheduler CVE-2022-45875 happens. in this, I'm explaining how to get remote access through RCE by exploiting Apache DolphinScheduler CVE-2022-45875 😈

Description

users/photos/clr6vsmml0vl21hn13643hl0n.jpg

@mhzcyber

68 posts

Security Researcher | Cyber Security Labs Developer | Upwork Top Rated CyberSecurity

Total vcoins

132.8K

Badges

badges/images/clemwgql90gww0jnxh6rbcqsr.png

Memelord

badges/images/clktw0fnh0pci1inadxpbcwpn.png

Shawarma King

Social media links

Comments (1)