CVE-2026-24015
published 2026-03-09CVE-2026-24015: A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability in Apache IoTDB.
This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7.
Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | iotdb | >= 1.0.0 < 1.3.7 | 1.3.7 |
| apache | iotdb | >= 2.0.0 < 2.0.7 | 2.0.7 |
| apache_software_foundation | apache_iotdb | >= 1.0.0 < 1.3.7 | 1.3.7 |
| apache_software_foundation | apache_iotdb | >= 2.0.0 < 2.0.7 | 2.0.7 |