CVE-2025-64152

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB. This issue affects Apache IoTDB: from 1.0.0 before 1.3.6, from 2.0.0 before 2.0.7. Users are recommended to upgrade to version 1.3.6 and 2.0.7, which fixes the issue.
Configurations

No configuration.

History

26 Jun 2026, 19:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.1

26 Jun 2026, 14:16

Type Values Removed Values Added
References
  • () http://www.openwall.com/lists/oss-security/2026/03/09/3 -

26 Jun 2026, 13:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-26 13:16

Updated : 2026-06-26 19:16


NVD link : CVE-2025-64152

Mitre link : CVE-2025-64152

CVE.ORG link : CVE-2025-64152


JSON object : View

Products Affected

No product.

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')