MEDIUM 5.3
PYSEC-2025-88
Details
Deserialization of Untrusted Data vulnerability in Apache IoTDB.
This issue affects Apache IoTDB: from 1.0.0 before 2.0.5.
Users are recommended to upgrade to version 2.0.5, which fixes the issue.
Are you affected?
Enter the version of the package you're using.
Affected packages
PyPI / apache-iotdb
Introduced in:
1.0.0 Fixed in: 2.0.5 Fix
pip install --upgrade 'apache-iotdb>=2.0.5'