Apache IoTDB is an integrated data management engine designed for time-series data from the Apache Foundation that provides data collection, storage, and analysis services, etc. An authorization issue vulnerability exists in Apache IoTDB version 0.13.0, which stems from vulnerability to session id attacks. A remote attacker could use the vulnerability to bypass the authentication process and take over the accounts of other Web application users in certain situations.
CPE | Name | Operator | Version |
---|---|---|---|
apache iotdb | eq | 0.13.0 |