Apache IoTDB Workbench: apache/iotdb-web-workbench: create a user without authorization
CVE-2023-24830
7.5HIGH
What is CVE-2023-24830?
An improper authentication vulnerability exists in the iotdb-web-workbench component of Apache IoTDB, affecting versions prior to 0.13.3. This flaw could allow unauthorized users to access restricted areas of the web workbench, potentially exposing sensitive data and resources.
Affected Version(s)
Apache IoTDB Workbench 0.13.0 < 0.13.3