A vulnerability, which was classified as critical, was found in Apache IoTDB up to 2.0.7. The affected element is an unknown function of the component RPC Interface. Such manipulation leads to path traversal.
This vulnerability is listed as CVE-2026-24014. The attack may be performed from remote. There is no available exploit.