CVE-2025-48392
published 2025-09-24CVE-2025-48392: A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A vulnerability in Apache IoTDB.
This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4.
Users are recommended to upgrade to version 2.0.5, which fixes the issue.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | iotdb | 1.3.3 – 1.3.4 | — |
| apache | iotdb | >= 2.0.1 < 2.0.5 | 2.0.5 |
| apache_software_foundation | apache_iotdb | 1.3.3 – 1.3.4 | — |
| apache_software_foundation | apache_iotdb | 2.0.1-beta – 2.0.4 | — |