CVE-2023-30771

PYSEC-2023-8 · CVE-2023-30771

Published Apr 17, 2023 · Modified Oct 9, 2025

Description

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.

This problem is fixed from version 0.13.4 of iotdb-web-workbench onwards.

References

ADVISORY https://lists.apache.org/thread/08nc3dr6lshfppx0pzmz5vbggdnzpojb
ARTICLE http://www.openwall.com/lists/oss-security/2023/04/18/7

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes