Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Apache IoTDB Security Vulnerabilities

cve
cve

CVE-2023-46226

Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the...

9.8CVSS

8.1AI Score

0.003EPSS

2024-01-15 11:15 AM
31
cve
cve

CVE-2023-51656

Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 0.13.0 through 0.13.4. Users are recommended to upgrade to version 1.2.2, which fixes the...

9.8CVSS

7.3AI Score

0.037EPSS

2023-12-21 12:15 PM
30
cve
cve

CVE-2023-30771

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13.4 of...

9.8CVSS

9.3AI Score

0.074EPSS

2023-04-17 08:15 AM
17
cve
cve

CVE-2023-24831

Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This issue affects Apache IoTDB Grafana Connector: from 0.13.0 through 0.13.3. Attackers could login without authorization. This is fixed in...

9.8CVSS

9.3AI Score

0.015EPSS

2023-04-17 07:15 AM
25
2
cve
cve

CVE-2023-24829

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13.3....

8.8CVSS

8.6AI Score

0.002EPSS

2023-01-31 10:15 AM
14
cve
cve

CVE-2023-24830

Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This issue affects iotdb-web-workbench component: from 0.13.0 before...

7.5CVSS

7.5AI Score

0.006EPSS

2023-01-30 05:15 PM
22
cve
cve

CVE-2022-43766

Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid...

7.5CVSS

7.5AI Score

0.002EPSS

2022-10-26 04:15 PM
37
4
cve
cve

CVE-2022-38370

Apache IoTDB grafana-connector version 0.13.0 contains an interface without authorization, which may expose the internal structure of database. Users should upgrade to version 0.13.1 which addresses this...

7.5CVSS

7.5AI Score

0.001EPSS

2022-09-05 10:15 AM
38
3
cve
cve

CVE-2022-38369

Apache IoTDB version 0.13.0 is vulnerable by session id attack. Users should upgrade to version 0.13.1 which addresses this...

8.8CVSS

8.7AI Score

0.016EPSS

2022-09-05 10:15 AM
40
3