Users are recommended to upgrade to version 1.3.0, which fixes the issue.
No analysis available yet.
No remediation available yet.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2024-0014 | Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue. |
Github GHSA |
GHSA-rxgg-273w-rfw7 | Remote Code Execution vulnerability in Apache IoTDB via UDF |
Sun, 13 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Fri, 20 Jun 2025 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Weaknesses | CWE-94 | |
| Metrics |
ssvc
|
Thu, 13 Feb 2025 17:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue. | Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue. |
Status: PUBLISHED
Assigner: apache
Published:
Updated: 2025-06-20T16:51:31.364Z
Reserved: 2023-10-19T01:26:14.726Z
Link: CVE-2023-46226
Updated: 2024-08-02T20:37:40.189Z
Status : Modified
Published: 2024-01-15T11:15:07.963
Modified: 2026-06-17T06:30:24.180
Link: CVE-2023-46226
No data.
OpenCVE Enrichment
No data.
-
CWE-94
Improper Control of Generation of Code ('Code Injection')
- NVD-CWE-noinfo
EUVD
Github GHSA