Lucene search
K

4 matches found

Veracode
Veracode
added 2025/05/19 4:15 a.m.11 views

Sensitive Information Exposure

org.apache.iotdb:node-commons is vulnerable to Sensitive Information Exposure. The vulnerability is due to improper sanitization and logging of sensitive authentication data by the OpenIdAuthorizer component. Specifically, sensitive information such as credentials or tokens is inserted directly...

7.5CVSS6.6AI score0.00709EPSS
Exploits0References7Affected Software2
Snyk
Snyk
added 2025/05/14 12:31 p.m.3 views

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via the OpenIdAuthorizer component. An attacker can gain access to sensitive data by exploiting the logging mechanism used in this component. Remediation Upgrade...

7.5CVSS7AI score0.00709EPSS
Exploits0References2
PyPA
PyPA
added 2025/05/14 11:16 a.m.13 views

PYSEC-2025-60

Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in the OpenIdAuthorizer of Apache IoTDB.This issue affects Apache IoTDB: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2.Users are recommended to upgrade to version...

7.5CVSS6.9AI score0.00709EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2025/05/14 12:0 a.m.5 views

Apache IoTDB 日志信息泄露漏洞

Apache IoTDB is an integrated data management engine designed for time-series data from the Apache USA Foundation that provides data collection, storage, and analysis services, among other things. A log information disclosure vulnerability exists in Apache IoTDB versions 0.10.0 through 1.3.3 and...

7.5CVSS6.1AI score0.00709EPSS
Exploits0References3
Rows per page
Query Builder