17 matches found
Astra Linux - уязвимость в hsqldb
Those who use java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL Database to process untrusted input may be vulnerable to a remote code execution attack. By default, it is allowed to call any static method of any Java class in the classpath, resulting in code execution. This issu...
MiracleLinux 7 : hsqldb-1.8.1.3-15.el7 (AXSA:2022-4236:01)
The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-4236:01 advisory. hsqldb: Untrusted input may lead to RCE attack CVE-2022-41853 Tenable has extracted the preceding description block directly from the MiracleLinux security...
EUVD-2005-4662
Malware in sbrugna...
CVE-2025-37105
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...
CVE-2025-37105
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...
CVE-2025-37105
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...
CVE-2025-37105
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.18...
CVE-2024-51768
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.17...
HPE AutoPass License Server 安全漏洞
HPE AutoPass License Server is a license management system from HPE America. A security vulnerability exists in HPE AutoPass License Server versions prior to 9.18 that stems from hsqldb-related remote code execution...
CVE-2024-51768
An hsqldb-related remote code execution vulnerability exists in HPE AutoPass License Server APLS prior to 9.17...
CVE-2024-51768
The CVE-2024-51768 entry concerns Hewlett Packard Enterprise AutoPass License Server (APLS) prior to 9.17, where the hsqldb component is the root cause. Public advisories describe an RCE via the hsqldb service, which listens on TCP port 9001; an attacker with network access can potentially execut...
TencentOS Server 2: hsqldb (TSSA-2022:0282)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0282 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...
CVE-2022-41853
Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...
HSQLDB 安全漏洞
HSQLDB is a relational database management system written in Java by The HSQL Development Group team. A code execution vulnerability exists in HSQLDB, which stems from the fact that its use of java.sql.Statement or java.sql.PreparedStatement to process untrusted input by default allows any static...
Mandriva Update for openoffice.org MDVSA-2008:095 (openoffice.org)
Check for the Version of openoffice.org OpenVAS Vulnerability Test Mandriva Update for openoffice.org MDVSA-2008:095 openoffice.org Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
CVE-2007-4575
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
CVE-2003-0845
Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to 1 TCP port 1701 in JBoss 3.2.1, a...