CVE-2022-41853

🗓️ 06 Oct 2022 17:14:43Reported by GoogleType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 287 Views🌐 WEB

Those using java.sql.Statement in hsqldb may be vulnerable to remote code execution in CVE-2022-41853

Reporter	Title	Published	Views	Family All 97
GithubExploit	Exploit for Unsafe Reflection in Hsqldb Hypersql_Database	24 Nov 202310:30	–	githubexploit
IBM Security Bulletins	Security Bulletin: Vulnerability in HSQLDB might affect IBM Storage Copy Data Management.	24 Jan 202519:15	–	ibm
IBM Security Bulletins	Security Bulletin: Common vulnerabilities addressed in Cloudera Data Platform 7.1.9 HF2	26 Mar 202503:55	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in HSQLDB	30 Jan 202317:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by remote code execution and sensitive information vulnerabilities (CVE-2022-31684, CVE-2022-41853)	4 Apr 202316:27	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by a remote code execution vulnerability in HSQLDB (CVE-2022-41853)	5 Dec 202215:55	–	ibm
IBM Security Bulletins	Security Bulletin: hsqldb-2.0.0.jar shipped with IBM Tivoli Business Service Manager is vulnerable to remote code execution (CVE-2022-41853)	9 Nov 202210:08	–	ibm
Tenable Nessus	Amazon Linux 2 : hsqldb (ALAS-2023-1914)	24 Jan 202300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : hsqldb (ALAS-2023-1666)	24 Jan 202300:00	–	nessus
Tenable Nessus	CentOS 7 : hsqldb (RHSA-2022:8560)	1 Dec 202200:00	–	nessus

NVD

Vulners

Node

hsqldb hypersql_databaseRange<2.7.1

Node

debian debian_linuxMatch10.0

debian debian_linuxMatch11.0

[
  {
    "vendor": "HyperSQL DataBase",
    "product": "hsqldb",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "2.7.1",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
debian	www.debian.org/security/2023/dsa-5313
hsqldb	www.hsqldb.org/doc/2.0/guide/sqlroutines-chapt.html
lists	www.lists.debian.org/debian-lts-announce/2022/12/msg00020.html
bugs	www.bugs.chromium.org/p/oss-fuzz/issues/detail

Parameter	Position	Path	Description	CWE
org.apache.commons.collections.enableUnsafeSerialization	nested	ldap://127.0.0.1:4444/pgesux	RCE via Java Deserialization using commons-collections/Log4j payloads leading to remote code execution via LDAP codebase fetch	CWE-470
org.apache.commons.lang.SerializationUtils.deserialize	nested	ldap://127.0.0.1:4444/pgesux	RCE via Java Deserialization using commons-collections/Log4j payloads leading to remote code execution via LDAP codebase fetch	CWE-470
org.apache.logging.log4j.core.config.plugins.convert.Base64Converter.parseBase64Binary	nested	ldap://127.0.0.1:4444/pgesux	RCE via Java Deserialization using commons-collections/Log4j payloads leading to remote code execution via LDAP codebase fetch	CWE-470
pgesux	nested	ldap://127.0.0.1:4444/pgesux	RCE via Java Deserialization using commons-collections/Log4j payloads leading to remote code execution via LDAP codebase fetch	CWE-470