GHSA-vx84-xvr8-w24c

Опубликовано: 24 сент. 2025

Источник: github

Github: Прошло ревью

CVSS4: 6.6

Описание

Apache IoTDB: DoS Vulnerability

A vulnerability in Apache IoTDB.

This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4.

Users are recommended to upgrade to version 2.0.5, which fixes the issue.

Ссылки

Пакеты

Наименование

org.apache.iotdb:iotdb-core

maven

Затронутые версииВерсия исправления

>= 1.3.3, < 2.0.5

2.0.5

EPSS

Процентиль: 57%

0.00357

Низкий

6.6 Medium

CVSS4

CVE ID

CVE-2025-48392

Дефекты

CWE-20

Связанные уязвимости

CVE-2025-48392

CVSS3: 7.5

nvd

5 месяцев назад

A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to version 2.0.5, which fixes the issue.

EPSS

Процентиль: 57%

0.00357

Низкий

6.6 Medium

CVSS4

CVE ID

CVE-2025-48392

Дефекты

CWE-20