By the Year
In 2022 there have been 0 vulnerabilities in Apache Iotdb . Iotdb did not have any published security vulnerabilities last year.
It may take a day or so for new Iotdb vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apache Iotdb Security Vulnerabilities
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly
7.5 - High
- December 03, 2020
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
An issue was found in Apache IoTDB .9.0 to 0.9.1 and 0.8.0 to 0.8.2
9.8 - Critical
- April 27, 2020
An issue was found in Apache IoTDB .9.0 to 0.9.1 and 0.8.0 to 0.8.2. When starting IoTDB, the JMX port 31999 is exposed with no certification.Then, clients could execute code remotely.
Improper Certificate Validation