CVE-2023-46226

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 15, 2024

Updated: Jan 22, 2024

Summary

CVE-2023-46226 is a Remote Code Execution vulnerability discovered in Apache IoTDB. Affecting versions 1.0.0 through 1.2.2, this issue poses a significant risk for affected systems. Successful exploitation allows attackers to execute arbitrary code remotely. To mitigate this threat, users are strongly advised to upgrade to the latest version, 1.3.0, which includes the necessary patch to address the vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apache IoTDB

Affected Vendors

Apache Software Foundation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tD9619
https://www.cve.org/CVERecord?id=CVE-2023-46226
https://nvd.nist.gov/vuln/detail/CVE-2023-46226

Back to Vulnerability Database