7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-24830

GHSA ID

GHSA-pp4w-9x82-6r47

EPSS Score

0.34176%

CWE

CWE-287

Published

1/30/2023

Updated

10/12/2023

KEV Status

Technology

Java

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2023-24830

CVE-2023-24830: Withdrawn Advisory: Apache IoTDB contains Improper Authentication

Withdrawn Advisory

This advisory has been withdrawn because the affected component, org.apache.iotdb.admin:iotdb-web-workbench, is not in a supported ecosystem. This link is maintained to preserve external references.

Original Description

Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This issue affects iotdb-web-workbench component: from 0.13.0 before 0.13.3.

(GitHub Advisory)

7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-24830

GHSA ID

GHSA-pp4w-9x82-6r47

EPSS Score

0.34176%

CWE

CWE-287

Published

1/30/2023

Updated

10/12/2023

KEV Status

Technology

Java

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
org.apache.iotdb:iotdb-parent	maven	>= 0.13.0, < 0.13.3	0.13.3

Vulnerability Intelligence
Miggo AI

Root Cause Analysis:

In progress

WAF Protection Rules

WAF Rule

## Wit**r*wn **visory T*is **visory **s ***n wit**r*wn ****us* t** *****t** *ompon*nt, `or*.*p****.iot**.**min:iot**-w**-work**n**`, is not in * [support** **osyst*m](*ttps://*it*u*.*om/*it*u*/**visory-**t***s*/*lo*/m*in/R***M*.m*#support**-**osyst*m

Reasoning

No *n*lysis *v*il**l*

7.5

Basic Information

Concerned about an active attack path?

CVE-2023-24830: Withdrawn Advisory: Apache IoTDB contains Improper Authentication

Withdrawn Advisory

Original Description

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI