CVE-2023-51656

CVE-2023-51656: Apache IoTDB: Unsafe deserialize map in Sync Tool

Vendor Apache Software Foundation

Product Apache IoTDB

Weakness CWE-502 · Unsafe deserialization

Published December 21, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 0.13.0 through 0.13.4. Users are recommended to upgrade to version 1.2.2, which fixes the issue.

Key dates

Disclosure timeline

December 21, 2023 CVE published

February 13, 2025 Record updated