Search for vulnerabilities
| Vulnerability ID | VCID-nf8h-en1u-bua4 |
| Aliases |
CVE-2023-51656
GHSA-f23h-52hj-99p6 |
| Summary | Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 0.13.0 through 0.13.4. Users are recommended to upgrade to version 1.2.2, which fixes the issue. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| System | Score | Found at |
|---|---|---|
| There are no known severity scores. | ||
| Reference id | Reference type | URL |
|---|---|---|
| https://github.com/apache/iotdb | ||
| https://lists.apache.org/thread/zy3klwpv11vl5n65josbfo2fyzxg3dxc | ||
| http://www.openwall.com/lists/oss-security/2023/12/21/5 | ||
| CVE-2023-51656 | https://nvd.nist.gov/vuln/detail/CVE-2023-51656 | |
| GHSA-f23h-52hj-99p6 | https://github.com/advisories/GHSA-f23h-52hj-99p6 |
No EPSS data available for this vulnerability.
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-06-02T04:46:43.234925+00:00 | GitLab Importer | Import | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.iotdb/iotdb-server/CVE-2023-51656.yml | 38.6.0 |