Lucene search
K

25 matches found

GithubExploit
GithubExploit
added 2026/04/29 12:58 p.m.123 views

h2database-rce-poc

H2 Console RCE Exploit Toolkit Vulnerability exploitation scr...

10CVSS7.2AI score0.64766EPSS
Exploits7
Ubuntu
Ubuntu
added 2024/06/13 2:44 p.m.43 views

USN-6834-1: H2 vulnerabilities

It was discovered that H2 was vulnerable to deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-42392 It was discovered that H2 incorrectly handled some specially crafted connection URLs. An attacker could possibly use this issue to...

10CVSS8.8AI score0.64766EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2024/06/13 12:0 a.m.31 views

Ubuntu 16.04 LTS / 18.04 LTS : H2 vulnerabilities (USN-6834-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6834-1 advisory. It was discovered that H2 was vulnerable to deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary...

10CVSS9.1AI score0.64766EPSS
Exploits6References3
RedHat Linux
RedHat Linux
added 2022/11/03 2:55 p.m.229 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.1 security update on RHEL 9

New Red Hat Single Sign-On 7.6.1 packages are now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits8References9
RedHat Linux
RedHat Linux
added 2022/11/03 2:54 p.m.57 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.1 security update on RHEL 8

New Red Hat Single Sign-On 7.6.1 packages are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of none. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits8References8
RedHat Linux
RedHat Linux
added 2022/11/03 2:54 p.m.103 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.1 security update on RHEL 7

New Red Hat Single Sign-On 7.6.1 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits8References8
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.61 views

RHEL 7 : Red Hat Single Sign-On 7.5.3 security update on RHEL 7 (Moderate) (RHSA-2022:6782)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6782 advisory. Red Hat Single Sign-On 7.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single...

10CVSS7.4AI score0.63211EPSS
Exploits5References19
RedHat Linux
RedHat Linux
added 2022/10/04 4:2 p.m.117 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.5.3 security update on RHEL 7

New Red Hat Single Sign-On 7.5.3 packages are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits5References9
RedHat Linux
RedHat Linux
added 2022/10/04 3:53 p.m.73 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.5.3 security update

A security update is now available for Red Hat Single Sign-On 7.5 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.2AI score0.63211EPSS
Exploits5References10
RedHat Linux
RedHat Linux
added 2022/06/06 3:54 p.m.140 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 7

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

10CVSS7.2AI score0.64766EPSS
Exploits9References36
Tenable Nessus
Tenable Nessus
added 2022/06/06 12:0 a.m.127 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 7 (Moderate) (RHSA-2022:4918)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4918 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

10CVSS7.6AI score0.64766EPSS
Exploits9References53
Tenable Nessus
Tenable Nessus
added 2022/06/06 12:0 a.m.106 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 8 (Moderate) (RHSA-2022:4919)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4919 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

10CVSS7.6AI score0.64766EPSS
Exploits9References53
Ubuntu
Ubuntu
added 2022/04/05 3:14 p.m.132 views

USN-5365-1: H2 vulnerabilities

It was discovered that H2 was vulnerable to deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-42392 It was discovered that H2 incorrectly handled some specially crafted connection URLs. An attacker could possibly use this issue to...

10CVSS8.8AI score0.64766EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/04/05 12:0 a.m.66 views

Ubuntu 20.04 LTS : H2 vulnerabilities (USN-5365-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5365-1 advisory. It was discovered that H2 was vulnerable to deserialization of untrusted data. An attacker could possibly use this issue to execute arbitrary code...

10CVSS9.1AI score0.64766EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.268 views

H2 Database JNDI Lookup RCE (CVE-2021-42392)

Binary data h2databasecve-2021-42392.nbin...

10CVSS9.7AI score0.63211EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.57 views

Debian DSA-5076-1 : h2database - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5076 advisory. Security researchers of JFrog Security and Ismail Aydemir discovered two remote code execution vulnerabilities in the H2 Java SQL database engine which can b...

10CVSS8.9AI score0.64766EPSS
Exploits6References9
Debian
Debian
added 2022/02/15 2:9 p.m.67 views

[SECURITY] [DSA 5076-1] h2database security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5076-1 [email protected] https://www.debian.org/security/ Markus Koschany February 15, 2022 https://www.debian.org/security/faq -...

10CVSS10AI score0.64766EPSS
Exploits6
Debian
Debian
added 2022/02/15 12:6 a.m.41 views

[SECURITY] [DLA 2923-1] h2database security update

Debian LTS Advisory DLA-2923-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 15, 2022 https://wiki.debian.org/LTS Package : h2database Version : 1.4.193-1+deb9u1 CVE ID : CVE-2021-42392 CVE-2022-23221 Debian Bug : 1003894 Security researchers of JFrog...

10CVSS7.7AI score0.64766EPSS
Exploits6
Check Point Advisories
Check Point Advisories
added 2022/01/23 12:0 a.m.13 views

H2 Database Console Remote Code Execution (CVE-2021-42392)

A remote code execution vulnerability exists in H2 Database Console. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.7AI score0.63211EPSS
Exploits3
Github Security Blog
Github Security Blog
added 2022/01/21 11:7 p.m.99 views

Arbitrary code execution in H2 Console

H2 Console before 2.1.210 allows remote attackers to execute arbitrary code via a jdbc:h2:mem JDBC URL containing the IGNOREUNKNOWNSETTINGS=TRUE;FORBIDCREATION=FALSE;INIT=RUNSCRIPT substring, a different vulnerability than CVE-2021-42392...

10CVSS7.5AI score0.64766EPSS
Exploits4References12Affected Software1
Rows per page
Query Builder