Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.
This problem is fixed from version 0.13.3 of iotdb-web-workbench onwards.
References
Link | Resource |
---|---|
https://lists.apache.org/thread/l0b59hh046tyn4gqot0bdrpg8gxlksmo | Mailing List Vendor Advisory |
Configurations
History
07 Nov 2023, 04:08
Type | Values Removed | Values Added |
---|---|---|
Summary | Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13.3 of iotdb-web-workbench onwards. |
08 Feb 2023, 02:08
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:apache:iotdb:*:*:*:*:*:*:*:* | |
References | (MISC) https://lists.apache.org/thread/l0b59hh046tyn4gqot0bdrpg8gxlksmo - Mailing List, Vendor Advisory | |
First Time |
Apache
Apache iotdb |
31 Jan 2023, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-31 10:15
Updated : 2023-12-10 14:48
NVD link : CVE-2023-24829
Mitre link : CVE-2023-24829
CVE.ORG link : CVE-2023-24829
JSON object : View
Products Affected
apache
- iotdb
CWE
CWE-863
Incorrect Authorization