CVE-2024-24780 – Apache IoTDB Untrusted URI Remote Code Execution Vulnerability

CVE ID : CVE-2024-24780

Published : May 14, 2025, 11:15 a.m. | 1 hour, 38 minutes ago

Description : Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attacker who has privilege to create UDF can register malicious function from untrusted URI.

This issue affects Apache IoTDB: from 1.0.0 before 1.3.4.

Users are recommended to upgrade to version 1.3.4, which fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2025-0138 – Palo Alto Networks Prisma Cloud Web Session Expiration Vulnerability

CVE-2025-2900 – IBM Semeru Runtime Denial of Service Buffer Overflow

CVE-2025-33104 – IBM WebSphere Application Server Cross-Site Scripting Vulnerability

CVE-2025-4640 – “PCL Zlib Out-of-bounds Write Overflow”