VulnerableCode Package Details - pkg:maven/org.apache.iotdb/iotdb-core@1.0.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-euh3-33me-mbct Aliases: CVE-2023-46226 GHSA-rxgg-273w-rfw7 PYSEC-2024-11	Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue.	1.3.0 Affected by 0 other vulnerabilities.
VCID-gtes-ey5n-7bhg Aliases: CVE-2026-24713 GHSA-6w48-2g9j-v9q5	Apache IoTDB has an Improper Input Validation vulnerability Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.	1.3.7 Affected by 0 other vulnerabilities. 2.0.7 Affected by 0 other vulnerabilities.
VCID-jrqf-tcrk-xfev Aliases: CVE-2026-24015 GHSA-74cf-pgh9-m5q2	Apache IoTDB has an Insecure Default Configuration Vulnerability A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.	1.3.7 Affected by 0 other vulnerabilities. 2.0.7 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-euh3-33me-mbct
Aliases:
CVE-2023-46226
GHSA-rxgg-273w-rfw7
PYSEC-2024-11

Remote Code Execution vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 1.0.0 through 1.2.2. Users are recommended to upgrade to version 1.3.0, which fixes the issue.

1.3.0
Affected by 0 other vulnerabilities.

VCID-gtes-ey5n-7bhg
Aliases:
CVE-2026-24713
GHSA-6w48-2g9j-v9q5

Apache IoTDB has an Improper Input Validation vulnerability Improper Input Validation vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.

1.3.7
Affected by 0 other vulnerabilities.

2.0.7
Affected by 0 other vulnerabilities.

VCID-jrqf-tcrk-xfev
Aliases:
CVE-2026-24015
GHSA-74cf-pgh9-m5q2

Apache IoTDB has an Insecure Default Configuration Vulnerability A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.7, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.7 or 2.0.7, which fixes the issue.

1.3.7
Affected by 0 other vulnerabilities.

2.0.7
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:51:28.231856+00:00	GitLab Importer	Affected by	VCID-jrqf-tcrk-xfev	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.iotdb/iotdb-core/CVE-2026-24015.yml	38.6.0
2026-06-02T04:51:27.357561+00:00	GitLab Importer	Affected by	VCID-gtes-ey5n-7bhg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.iotdb/iotdb-core/CVE-2026-24713.yml	38.6.0
2026-06-02T04:46:51.267207+00:00	GitLab Importer	Affected by	VCID-euh3-33me-mbct	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.iotdb/iotdb-core/CVE-2023-46226.yml	38.6.0