TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to version 3.0.7.1, TDengine DataBase crashes on UDF nested query. This issue affects TDengine Databases which let users connect and run arbitrary queries. Version 3.0.7.1 has a patch for this issue.
References
| Link | Resource |
|---|---|
| https://github.com/taosdata/TDengine/security/advisories/GHSA-w23f-r2fm-27hf | Vendor Advisory |
| https://github.com/taosdata/TDengine/security/advisories/GHSA-w23f-r2fm-27hf | Vendor Advisory |
Configurations
History
21 Nov 2024, 08:13
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/taosdata/TDengine/security/advisories/GHSA-w23f-r2fm-27hf - Vendor Advisory |
03 Aug 2023, 15:56
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://github.com/taosdata/TDengine/security/advisories/GHSA-w23f-r2fm-27hf - Vendor Advisory | |
| CWE | NVD-CWE-noinfo | |
| CPE | cpe:2.3:a:tdengine:tdengine:*:*:*:*:*:*:*:* | |
| First Time |
Tdengine
Tdengine tdengine |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
25 Jul 2023, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-07-25 22:15
Updated : 2024-11-21 08:13
NVD link : CVE-2023-38502
Mitre link : CVE-2023-38502
CVE.ORG link : CVE-2023-38502
JSON object : View
Products Affected
tdengine
- tdengine
CWE