[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: [oss-security] CVE-2023-24829: Apache IoTDB: apache/iotdb-web-workbench: forge the JWTToken to acces
From: Jialin Qiao <qiaojialin () apache ! org>
Date: 2023-01-30 15:41:45
Message-ID: 23f62888-1023-1f89-651a-0f858e91c770 () apache ! org
[Download RAW message or body]
Description:
Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB \
iotdb-web-workbench.This issue affects users' access to the system without authorization.
This CVE is fixed in iotdb-web-workbench tag v0.13.3.
References:
https://iotdb.apache.org/
https://iotdb.apache.org
https://www.cve.org/CVERecord?id=CVE-2023-24829
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic