An issue was found in Apache IoTDB .9.0 to 0.9.1 and 0.8.0 to 0.8.2. When starting IoTDB, the JMX port 31999 is exposed with no certification.Then, clients could execute code remotely.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2020-04-27T16:16:12
Updated: 2024-08-04T06:54:00.401Z
Reserved: 2019-12-02T00:00:00
Link: CVE-2020-1952
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-04-27T17:15:13.533
Modified: 2024-11-21T05:11:43.460
Link: CVE-2020-1952
Redhat
No data.