CVE-2023-46226

CVE-2023-46226: Apache IoTDB: Remote Code Execution (RCE) risk via the UDF

Vendor Apache Software Foundation

Product Apache IoTDB

Published January 15, 2024

Last update June 20, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue.

Key dates

Disclosure timeline

January 15, 2024 CVE published

June 20, 2025 Record updated