CVE-2022-38370
published 2022-09-05CVE-2022-38370: Apache IoTDB grafana-connector version 0.13.0 contains an interface without authorization, which may expose the internal structure of database. Users should…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
Apache IoTDB grafana-connector version 0.13.0 contains an interface without authorization, which may expose the internal structure of database. Users should upgrade to version 0.13.1 which addresses this issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | iotdb | — | — |
| apache_software_foundation | apache_iotdb | — | — |