An issue was found in Apache IoTDB .9.0 to 0.9.1 and 0.8.0 to 0.8.2. When starting IoTDB, the JMX port 31999 is exposed with no certification.Then, clients could execute code remotely.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Apache

IoTDB

Affected Versions:

0.9.0 to 0.9.1 0.8.0 to 0.8.2

References

https://lists.apache.org/thread.html/r3d2ff899ead64d2952fdc1fbb1f520ca42011ed2b4c7f786e921f6b9%40%3Cdev.iotdb.apache.org%3E

Published: 2020-04-27T16:16:12

Last Modified: 2024-08-04T06:54:00.401Z

Copied to clipboard!