CVE-2025-24790 vulnerabilities

🗓️ 29 Jan 2025 18:15:47Reported by ChainguardType

cgr

cgr🔗 packages.cgr.dev👁 11 Views

CVE-2025-24790 vulnerabilities found in Flyway software packages.

Reporter	Title	Published	Views	Family All 22
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in the Snowflake JDBC driver	28 Mar 202522:48	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate with watsonx Assistant Cartridge	10 Mar 202607:07	–	ibm
IBM Security Bulletins	Security Bulletin: On Linux systems, when temporary credential caching is enabled, the Snowflake JDBC Driver will cache temporary credentials locally in a world-readable file, affects watsonx.data	12 May 202512:16	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data has addressed security vulnerabilities.	28 Aug 202514:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	15 Apr 202503:59	–	ibm
Circl	CVE-2025-24790	29 Jan 202517:53	–	circl
CNNVD	Snowflake JDBC 安全漏洞	29 Jan 202500:00	–	cnnvd
CVE	CVE-2025-24790	29 Jan 202517:49	–	cve
Cvelist	CVE-2025-24790 Snowflake JDBC uses insecure temporary credential cache file permissions	29 Jan 202517:49	–	cvelist
EUVD	EUVD-2025-0123	3 Oct 202520:07	–	euvd

OS	OS Version	Architecture	Package	Package Version	Filename
wolfi	any	x86_64	flyway	11.2.0-r1	flyway-11.2.0-r1.apk
wolfi	any	aarch64	flyway	11.2.0-r1	flyway-11.2.0-r1.apk
wolfi	any	x86_64	trino	472-r0	trino-472-r0.apk
wolfi	any	aarch64	trino	472-r0	trino-472-r0.apk

09 Jun 2026 13:18Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.14.4 - 5.5

EPSS0.00088

SSVC

cve vulnerabilities flyway packages software security