CNNVD-202509-3889 Information

CNNVD ID

CNNVD-202509-3889

Related CVE

CVE-2025-48392

• CNNVD Published: 2025-09-24

Description (Chinese)

Apache IoTDB是美国阿帕奇（Apache）基金会的一款为时间序列数据设计的集成数据管理引擎，它能够提供数据收集、存储和分析服务等。 Apache IoTDB 1.3.3版本至1.3.4版本和2.0.1-beta版本至2.0.4版本存在安全漏洞，该漏洞源于容易受到拒绝服务攻击。

Description (English)

Apache IoTDB is an integrated data management engine designed for time series data by the Apache Foundation in the United States, which provides data collection, storage and analysis services. There is a security gap between Appache IoTDB version 1.3.3 and Versions 1.3.4 and 2.0.1-beta version to 2.0.4, which stems from vulnerability to denial of service attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Apache Friends

Published

2025-09-24

Last Modified

2026-02-24

References

https://lists.apache.org/thread/1rn0637hptglmctf8cqd9425bj4q21td https://access.redhat.com/security/cve/cve-2025-48392

Patch

https://iotdb.apache.org/