๐Ÿ” CVE Alert

CVE-2026-40006

HIGH 7.5

Apache IoTDB: Unauthenticated heap-exhaustion DoS via unbounded allocation in IoTDB AirGap pipe receiver

CVSS Score
7.5
EPSS Score
0.2%
EPSS Percentile
7th

Memory Allocation with Excessive Size Value, Allocation of Resources Without Limits or Throttling, Missing Authentication for Critical Function vulnerability in Apache IoTDB. When pipe_air_gap_receiver_enabled=true, the IoTDB AirGap pipe receiver accepts raw TCP connections on port 9780 with no authentication. The readLength method reads an attacker-controlled 32-bit integer from the socket and readData passes it directly to new byte[length] with no upper-bound check. An unauthenticated attacker can cause the JVM to attempt an allocation of up to 2,147,483,647 bytes per connection, exhausting heap memory and crashing or severely degrading the DataNode process. This issue affects Apache IoTDB: from 1.0.0 before 2.0.10. Users are recommended to upgrade to version 2.0.10, which fixes the issue.

CWE CWE-789 CWE-770 CWE-306
Vendor apache software foundation
Product apache iotdb
Published Jul 10, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for apache software foundation apache iotdb

Be the first to know when new high vulnerabilities affecting apache software foundation apache iotdb are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Apache Software Foundation / Apache IoTDB
1.0.0 < 2.0.10

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
lists.apache.org: https://lists.apache.org/thread/rfpt7m9fvdrw37r3ow5omp2n914z6zqk openwall.com: http://www.openwall.com/lists/oss-security/2026/07/10/3

Credits

bugbunny.ai