MEDIUM Maven PyPI
GHSA-5fc3-pqf2-57cx · CVE-2025-26864, PYSEC-2025-60 Apache IoTDB Discloses Sensitive Information via Log Files
Modified: 7/2/2025
package
PyPI / apache-iotdb
pkg:pypi/apache-iotdb
MEDIUM 5.3 Maven PyPI
GHSA-776q-jw43-fhjx · CVE-2025-48459, PYSEC-2025-88 Apache IoTDB: Deserialization of untrusted Data
Modified: 6/5/2026
CRITICAL 9.8 Maven PyPI
GHSA-f4rq-f4j9-f6rm · CVE-2024-24780, PYSEC-2025-59 Apache IoTDB Vulnerable to Remote Code Execution
Modified: 7/2/2025
HIGH 7.5 Maven PyPI
GHSA-g6hg-4v3c-6jq7 · CVE-2022-43766, PYSEC-2022-42972 Apache IoTDB subject to ReDOS with Java 8
Modified: 9/12/2024
HIGH 8.8 Maven PyPI
GHSA-g6vm-3ch8-c6jq · CVE-2022-38369, PYSEC-2022-43069 Apache IoTDB Session Fixation vulnerability
Modified: 11/26/2024
CRITICAL 9.8 Maven PyPI
GHSA-pvjv-386f-c8wh · CVE-2023-24831, PYSEC-2023-7 Apache IoTDB Grafana Connector vulnerable to Improper Authentication
Modified: 9/12/2024
CRITICAL 9.8 Maven PyPI
GHSA-rxgg-273w-rfw7 · CVE-2023-46226, PYSEC-2024-11 Remote Code Execution vulnerability in Apache IoTDB via UDF
Modified: 6/20/2025
— PyPI
PYSEC-2022-42972 · CVE-2022-43766, GHSA-g6hg-4v3c-6jq7 Modified: 6/8/2026
HIGH 8.8 PyPI
PYSEC-2022-43069 · CVE-2022-38369, GHSA-g6vm-3ch8-c6jq Modified: 11/25/2024
— PyPI
PYSEC-2023-5 · CVE-2023-24829 Modified: 11/8/2023
— PyPI
PYSEC-2023-6 · CVE-2023-24830 Modified: 11/8/2023
— PyPI
PYSEC-2023-7 · CVE-2023-24831, GHSA-pvjv-386f-c8wh Modified: 11/8/2023
— PyPI
PYSEC-2023-8 · CVE-2023-30771 Modified: 10/9/2025
CRITICAL 9.8 PyPI
PYSEC-2024-11 · CVE-2023-46226, GHSA-rxgg-273w-rfw7 Modified: 1/22/2024
— PyPI
PYSEC-2025-59 · CVE-2024-24780, GHSA-f4rq-f4j9-f6rm Modified: 7/1/2025
— PyPI
PYSEC-2025-60 · CVE-2025-26864, GHSA-5fc3-pqf2-57cx Modified: 7/1/2025
MEDIUM 5.3 PyPI
PYSEC-2025-88 · CVE-2025-48459, GHSA-776q-jw43-fhjx Modified: 5/20/2026