** UNSUPPORTED WHEN ASSIGNED ** Server-Side Request Forgery (SSRF) vulnerability in Apache IoTDB Workbench. This issue affects Apache IoTDB Workbench: from 0.13.0. As this project is retired, we do not plan to release a version that fixes this issue. Users are recommended to find an alternative or restrict access to the instance to trusted users. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
History

Thu, 13 Mar 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 30 Aug 2024 17:00:00 +0000

Type Values Removed Values Added
First Time appeared Apache
Apache iotdb Workbench
CPEs cpe:2.3:a:apache:iotdb_workbench:*:*:*:*:*:*:*:*
Vendors & Products Apache
Apache iotdb Workbench
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published:

Updated: 2025-03-13T14:22:04.554Z

Reserved: 2024-05-28T03:20:02.782Z

Link: CVE-2024-36448

cve-icon Vulnrichment

Updated: 2024-08-05T17:02:37.365Z

cve-icon NVD

Status : Modified

Published: 2024-08-05T10:15:32.913

Modified: 2025-03-13T15:15:44.753

Link: CVE-2024-36448

cve-icon Redhat

No data.