GHSA-g6vm-3ch8-c6jq, CVE-2022-38369
pypi/apache-iotdb
Session Fixation
Apache IoTDB version 0.13.0 is vulnerable by session id attack. Users should upgrade to version 0.13.1 which addresses this issue.
All versions before 0.13.1
Upgrade to version 0.13.1 or above.
2022-09-23
source |