Search for vulnerabilities
| Vulnerability ID | VCID-8yys-3rvw-nka6 |
| Aliases |
CVE-2023-24831
GHSA-pvjv-386f-c8wh PYSEC-2023-7 |
| Summary | Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This issue affects Apache IoTDB Grafana Connector: from 0.13.0 through 0.13.3. Attackers could login without authorization. This is fixed in 0.13.4. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| There are no known severity scores. | ||
| Reference id | Reference type | URL |
|---|---|---|
| https://github.com/apache/iotdb | ||
| https://github.com/pypa/advisory-database/tree/main/vulns/apache-iotdb/PYSEC-2023-7.yaml | ||
| https://lists.apache.org/thread/3dgvzgstycf8b5hyf4z3n7cqdhcyln3l | ||
| CVE-2023-24831 | https://nvd.nist.gov/vuln/detail/CVE-2023-24831 | |
| GHSA-pvjv-386f-c8wh | https://github.com/advisories/GHSA-pvjv-386f-c8wh |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-02T04:18:36.378184+00:00 | Pypa Importer | Import | https://github.com/pypa/advisory-database/blob/main/vulns/apache-iotdb/PYSEC-2023-7.yaml | 38.6.0 |