漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Apache IoTDB: Exposure of Sensitive Information in IoTDB OpenID Authentication
Vulnerability Description
Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in the OpenIdAuthorizer of Apache IoTDB. This issue affects Apache IoTDB: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2. Users are recommended to upgrade to version 1.3.4 and 2.0.2, which fix the issue.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
Apache IoTDB 日志信息泄露漏洞
Vulnerability Description
Apache IoTDB是美国阿帕奇(Apache)基金会的一款为时间序列数据设计的集成数据管理引擎,它能够提供数据收集、存储和分析服务等。 Apache IoTDB 0.10.0至1.3.3版本和2.0.1-beta至2.0.2之前版本存在日志信息泄露漏洞,该漏洞源于OpenIdAuthorizer中敏感信息泄露和日志文件插入问题。
CVSS Information
N/A
Vulnerability Type
N/A