TDengine is an open source, time-series database optimized for Internet of Things devices. Prior to version 22.214.171.124, TDengine DataBase crashes on UDF nested query. This issue affects TDengine Databases which let users connect and run arbitrary queries. Version 126.96.36.199 has a patch for this issue..This CVE has a CVSS3.1 score of 6.5 and a Base Severity of MEDIUM.
References for CVE-2023-38502 :
|Metric Type||Metric Score|