CVE-2023-51656

UNRATEDInsecure deserialization

Description

Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 0.13.0 through 0.13.4. Users are recommended to upgrade to version 1.2.2, which fixes the issue.

Affected products

Apache Software Foundation / Apache IoTDB0.13.0 – 0.13.4

References

MAILING_LISThttps://lists.apache.org/thread/zy3klwpv11vl5n65josbfo2fyzxg3dxc
MAILING_LISThttp://www.openwall.com/lists/oss-security/2023/12/21/5