CVE-2022-38369

Session Fixation in maven/org.apache.iotdb/iotdb-server

Identifiers

CVE-2022-38369

Package Slug

maven/org.apache.iotdb/iotdb-server

Vulnerability

Session Fixation

Description

Apache IoTDB version 0.13.0 is vulnerable by session id attack. Users should upgrade to version 0.13.1 which addresses this issue.

Affected Versions

Version 0.13.0

Solution

Upgrade to version 0.13.1 or above.

Last Modified

2022-09-12

source