CVE-2025-48392 | THREATINT

Description

A vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.3.3 through 1.3.4, from 2.0.1-beta through 2.0.4. Users are recommended to upgrade to version 2.0.5, which fixes the issue.

PUBLISHED Reserved 2025-05-20 | Published 2025-09-24 | Updated 2025-11-04 | Assigner apache

Problem types

DoS Vulnerability

Product status

Default status

unaffected

1.3.3 (semver)

affected

2.0.1-beta (semver)

affected

Credits

yyjLF finder

References

www.openwall.com/lists/oss-security/2025/09/24/9

lists.apache.org/thread/1rn0637hptglmctf8cqd9425bj4q21td vendor-advisory

cve.org (CVE-2025-48392)

nvd.nist.gov (CVE-2025-48392)

Download JSON