CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

May 14, 2025

CVE ID : CVE-2025-26795

Published : May 14, 2025, 11:16 a.m. | 51 minutes ago

Description : Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in Apache IoTDB JDBC driver.

This issue affects iotdb-jdbc: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2.

Users are recommended to upgrade to version 2.0.2 and 1.3.4, which fix the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-26864 – Apache IoTDB OpenIdAuthorizer Sensitive Information Exposure and Tampering

Next Article CVE-2024-24780 – Apache IoTDB Untrusted URI Remote Code Execution Vulnerability

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

How to install and use Ollama to run AI LLMs on your Windows 11 PC

Community News: Latest PECL Releases (05.13.2025)

Community News: Latest PECL Releases (05.13.2025)

How We Use Epic Branches. Without Breaking Our Flow.

I think the ergonomics of generators is growing on me.

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

This $4 Steam Deck game includes the most-played classics from my childhood — and it will save you paper

Microsoft shares rare look at radical Windows 11 Start menu designs it explored before settling on the least interesting one of the bunch

NVIDIA’s new GPU driver adds DOOM: The Dark Ages support and improves DLSS in Microsoft Flight Simulator 2024

CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

Nmap 7.96 Launches with Lightning-Fast DNS and 612 Scripts

CVE-2025-47705 – Drupal IFrame Remove Filter Cross-Site Scripting (XSS)

Driving Retail Loyalty with MongoDB and Cognigy

Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware

Cybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New Attacks

New Pixel Watch 3 leak hints at Google’s biggest design change yet – and I’m excited

Microsoft’s latest AI tool won’t take your job — it’s here to help you find one

Baidu Research Introduces EICopilot: An Intelligent Agent-based Chatbot to Retrieve and Interpret Enterprise Information from Massive Graph Databases

Error’d: Artificial Average Intelligence

Yahoo’s New AI-Driven News App: A Revolution in Digital Journalism

CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

Related Posts