← back
CVE-2023-51656

Apache IoTDB: Unsafe deserialize map in Sync Tool

EPSS 1.0%CWE-502
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
21 Dec 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Deserialization of Untrusted Data vulnerability in Apache IoTDB.This issue affects Apache IoTDB: from 0.13.0 through 0.13.4. Users are recommended to upgrade to version 1.2.2, which fixes the issue.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →