VYPR

Maven package

org.apache.iotdb/tsfile

pkg:maven/org.apache.iotdb/tsfile

Vulnerabilities (1)

  • CVE-2022-43766HigOct 26, 2022
    affected >= 0.12.2, < 0.13.3fixed 0.13.3

    Apache IoTDB version 0.12.2 to 0.12.6, 0.13.0 to 0.13.2 are vulnerable to a Denial of Service attack when accepting untrusted patterns for REGEXP queries with Java 8. Users should upgrade to 0.13.3 which addresses this issue or use a later version of Java to avoid it.