VYPR
Critical severityNVD Advisory· Published Mar 9, 2026· Updated Mar 10, 2026

Apache IoTDB: Insecure Default Configuration Vulnerability

CVE-2026-24015

Description

A vulnerability in Apache IoTDB.

This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7.

Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.iotdb:iotdb-coreMaven
>= 1.0.0, < 1.3.71.3.7
org.apache.iotdb:iotdb-coreMaven
>= 2.0.0, < 2.0.72.0.7

Affected products

2

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.