Unrated severityNVD Advisory· Published Jan 31, 2023· Updated Mar 27, 2025
Apache IoTDB Workbench: apache/iotdb-web-workbench: forge the JWTToken to access workbench
CVE-2023-24829
Description
Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.
This problem is fixed from version 0.13.3 of iotdb-web-workbench onwards.
Affected products
2>=0.13.0, <0.13.3+ 1 more
- (no CPE)range: >=0.13.0, <0.13.3
- (no CPE)range: 0.13.0
Patches
Vulnerability mechanics
References
1- lists.apache.org/thread/l0b59hh046tyn4gqot0bdrpg8gxlksmomitrevendor-advisory
News mentions
0No linked articles in our index yet.