CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

May 14, 2025

CVE ID : CVE-2025-26795

Published : May 14, 2025, 11:16 a.m. | 51 minutes ago

Description : Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Log File vulnerability in Apache IoTDB JDBC driver.

This issue affects iotdb-jdbc: from 0.10.0 through 1.3.3, from 2.0.1-beta before 2.0.2.

Users are recommended to upgrade to version 2.0.2 and 1.3.4, which fix the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-26864 – Apache IoTDB OpenIdAuthorizer Sensitive Information Exposure and Tampering

Next Article CVE-2024-24780 – Apache IoTDB Untrusted URI Remote Code Execution Vulnerability

Highlights

CVE-2025-7596 – Tenda FH1205 Stack-Based Buffer Overflow Vulnerability

July 14, 2025

CVE ID : CVE-2025-7596

Published : July 14, 2025, 11:15 a.m. | 6 hours, 29 minutes ago

Description : A vulnerability was found in Tenda FH1205 2.0.0.7(775). It has been rated as critical. This issue affects the function formWifiExtraSet of the file /goform/WifiExtraSet. The manipulation of the argument wpapsk_crypto leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

CVE-2025-3642 – Moodle EQUELLA Remote Code Execution Vulnerability

GitHub Enterprise Server Vulnerabilities Allows Arbitrary Code Execution

Three ways Figma explored horizontal scrolling

ether0: A 24B LLM Trained with Reinforcement Learning RL for Advanced Chemical Reasoning Tasks

CVE-2025-7596 – Tenda FH1205 Stack-Based Buffer Overflow Vulnerability

The best Mini ITX PC cases of 2025: Expert recommended

CVE-2025-6410 – PHPGurukul Art Gallery Management System SQL Injection

CVE-2022-43661 – Apache Struts Command Injection

CVE-2025-26795 – Apache IoTDB JDBC Driver Information Exposure and Log Injection Vulnerability

Related Posts