Description
Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This issue affects Apache IoTDB Grafana Connector: from 0.13.0 through 0.13.3. Attackers could login without authorization. This is fixed in 0.13.4.
Remediation
References
https://lists.apache.org/thread/3dgvzgstycf8b5hyf4z3n7cqdhcyln3l
Related Vulnerabilities
CVE-2011-4367 Vulnerability in maven package org.apache.myfaces.core:myfaces-impl
CVE-2022-41240 Vulnerability in maven package org.jenkins-ci.plugins:walti
CVE-2023-39156 Vulnerability in maven package org.jenkins-ci.plugins:bazaar
CVE-2020-10203 Vulnerability in maven package org.sonatype.nexus:nexus-core
CVE-2020-17523 Vulnerability in maven package org.apache.shiro:shiro-web