178 matches found
EUVD-2022-0022
Malicious code in bioql PyPI...
EUVD-2023-0039
Malicious code in bioql PyPI...
EUVD-2024-36093
Malicious code in bioql PyPI...
EUVD-2023-0040
Malicious code in bioql PyPI...
EUVD-2023-0041
Malicious code in bioql PyPI...
EUVD-2022-0722
Malicious code in bioql PyPI...
EUVD-2022-0023
Malicious code in bioql PyPI...
EUVD-2025-14874
Malicious code in bioql PyPI...
EUVD-2022-0024
Malicious code in bioql PyPI...
EUVD-2024-0014
Malicious code in bioql PyPI...
EUVD-2023-0038
Malicious code in bioql PyPI...
CVE-2025-48392
A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to version 2.0.5, which fixes the issue...
Apache IoTDB: DoS Vulnerability
A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to version 2.0.5, which fixes the issue...
GHSA-VX84-XVR8-W24C Apache IoTDB: DoS Vulnerability
A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to version 2.0.5, which fixes the issue...
GHSA-776Q-JW43-FHJX Apache IoTDB: Deserialization of untrusted Data
Summary Apache IoTDB deserializes data from external inputs without sufficient validation, allowing attacker-controlled serialized objects to be processed. In environments where a compatible gadget chain is reachable, this can be abused to execute arbitrary code or alter server state; at minimum ...
Apache IoTDB: Deserialization of untrusted Data
Summary Apache IoTDB deserializes data from external inputs without sufficient validation, allowing attacker-controlled serialized objects to be processed. In environments where a compatible gadget chain is reachable, this can be abused to execute arbitrary code or alter server state; at minimum ...
CVE-2025-48459
Deserialization of Untrusted Data vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 2.0.5. Users are recommended to upgrade to version 2.0.5, which fixes the issue...
anylearn (>=0.20.5 <=0.20.7rc3), pymetard (>=0.0.1 <=0.0.4) potentially affected by CVE-2025-48459 via apache-iotdb (=1.3.2.post0)
apache-iotdb PYPI version =1.3.2.post0 is affected by a known vulnerability. The following packages have a transitive dependency on apache-iotdb and may be impacted: - anylearn =0.20.5, =0.0.1, =0.0.4 Source cves: CVE-2025-48459 Source advisory: OSV:PYSEC-2025-88...
PYSEC-2025-88
Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 before 2.0.5.Users are recommended to upgrade to version 2.0.5, which fixes the issue...
CVE-2025-48459
Deserialization of Untrusted Data vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 2.0.5. Users are recommended to upgrade to version 2.0.5, which fixes the issue...