CVE-2026-24013

Source
https://cve.org/CVERecord?id=CVE-2026-24013
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-24013.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-24013
Aliases
Published
2026-07-06T08:38:54.778Z
Modified
2026-07-15T01:49:15.418969267Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
Apache IoTDB: Authentication Bypass via Forged SessionID in Thrift RPC
Details

Authentication Bypass by Spoofing vulnerability in Apache IoTDB. Certain Thrift RPC query handlers lack strict validation of the sessionId parameter. An attacker can construct requests with a forged sessionId and, without performing openSession authentication, receive valid query results. This allows authentication bypass and unauthorized reading of time-series data.

This issue affects Apache IoTDB: from 1.3.3 before 2.0.8.

Users are recommended to upgrade to version 2.0.8, which fixes the issue.

Database specific
{
    "cwe_ids": [
        "CWE-290"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/24xxx/CVE-2026-24013.json",
    "cna_assigner": "apache",
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "introduced": "1.3.3"
                },
                {
                    "fixed": "2.0.8"
                }
            ],
            "source": "AFFECTED_FIELD"
        },
        {
            "extracted_events": [
                {
                    "introduced": "1.3.3"
                },
                {
                    "fixed": "2.0.8"
                }
            ],
            "source": "DESCRIPTION"
        }
    ]
}
References

Affected packages

Git / github.com/apache/iotdb

Affected ranges

Type
GIT
Repo
https://github.com/apache/iotdb
Events
Database specific
{
    "cpe": "cpe:2.3:a:apache:iotdb:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "1.3.3"
        },
        {
            "fixed": "2.0.8"
        }
    ],
    "source": "CPE_RANGE"
}

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-24013.json"