PYSEC-2023-5

See a problem?

Import Source

https://github.com/pypa/advisory-database/blob/main/vulns/apache-iotdb/PYSEC-2023-5.yaml

JSON Data

https://api.test.osv.dev/v1/vulns/PYSEC-2023-5

Aliases

CVE-2023-24829

Published

2023-01-31T10:15:00Z

Modified

2023-11-01T05:01:19.739042Z

Summary

[none]

Details

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13.3 of iotdb-web-workbench onwards.

References

https://lists.apache.org/thread/l0b59hh046tyn4gqot0bdrpg8gxlksmo

Affected packages

PyPI / apache-iotdb

Package

Name: apache-iotdb; View open source insights on deps.dev
Purl: pkg:pypi/apache-iotdb

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0.13.0

Fixed

0.13.3

Affected versions

0.*

0.13.0

0.13.0.post1

0.13.1

0.13.2