CVE-2024-24780 – Apache IoTDB Untrusted URI Remote Code Execution Vulnerability

CVE ID : CVE-2024-24780

Published : May 14, 2025, 11:15 a.m. | 1 hour, 38 minutes ago

Description : Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attacker who has privilege to create UDF can register malicious function from untrusted URI.

This issue affects Apache IoTDB: from 1.0.0 before 1.3.4.

Users are recommended to upgrade to version 1.3.4, which fixes the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

نوشته های مشابه

CVE-2023-53146 – “Linux Media DW2102 Null Pointer Dereference Vulnerability”

CVE-2024-54779 – Netgate pfSense CE Cross Site Scripting Vulnerability

CVE-2024-54780 – Netgate pfSense CE OpenVPN Command Injection Vulnerability

CVE-2024-57273 – Netgate pfSense CE Cross-Site Scripting Vulnerability