{"schema_version": "1.6.1", "id": "CVE-2025-55017", "summary": "Path Traversal Vulnerability", "details": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache IoTDB.\n\nThis issue affects Apache IoTDB: from 2.0.0 before 2.0.6, from 1.0.0 before 1.3.6.\n\nUsers are recommended to upgrade to version 1.3.6 and 2.0.6, which fixes the issue.", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "2.0.0"}, {"fixed": "2.0.6"}]}, {"type": "SEMVER", "events": [{"introduced": "1.0.0"}, {"fixed": "1.3.6"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/lk08wlxq9sp64mo8hw6wvjxd3bh3lpqg"}]}