CVE-2023-30771
published 2023-04-17CVE-2023-30771: Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.
This problem is fixed from version 0.13.4 of iotdb-web-workbench onwards.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | iotdb_web_workbench | — | — |
| apache_software_foundation | apache_iotdb_workbench | >= 0.13.3 < 0.13.4 | 0.13.4 |