Skip to main content
CVE-2023-24829 HIGH PATCH This Week

Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.13.0 before 0.13.3. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Authentication Bypass Iotdb
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2023-22611 HIGH PATCH This Week

A CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause information disclosure when specific messages are sent to the server over the database. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Ecostruxure Geo Scada Expert 2019 Ecostruxure Geo Scada Expert 2020 Ecostruxure Geo Scada Expert 2021
NVD
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-22610 HIGH PATCH This Week

A CWE-863: Incorrect Authorization vulnerability exists that could cause Denial of Service against the Geo SCADA server when specific messages are sent to the server over the database server TCP port. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Ecostruxure Geo Scada Expert 2019 Ecostruxure Geo Scada Expert 2020 Ecostruxure Geo Scada Expert 2021
NVD
CVSS 3.1
7.5
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy