Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/08/14 3:38 p.m.21 views

Security Bulletin: Vulnerability in Apache Calcite Avatica affects watsonx.data

Summary Apache Calcite Avatica JDBC driver creates HTTP client instances based on class names provided via httpclientimpl connection property; however, the driver does not verify if the class implements the expected interface before instantiating it, which can lead to code execution loaded via...

8.8CVSS9.2AI score0.02276EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/22 9:43 a.m.75 views

Security Bulletin: Potential vulnerability in Apache Calcite Avatica affects IBM Operations Analytics - Log Analysis (CVE-2022-36364)

Summary Prior to version 1.22.0 vulnerability in Apache Calcite Avatica allow a remote attacker to execute arbitrary code on the system. This has been fixed. Vulnerability Details CVEID:CVE-2022-36364 DESCRIPTION: Apache Calcite Avatica could allow a remote attacker to execute arbitrary code on t...

8.8CVSS8.9AI score0.02276EPSS
Exploits0Affected Software1
Wolfi
Wolfi
added 2022/07/28 9:15 a.m.121 views

CVE-2022-36364 vulnerabilities

Vulnerabilities for packages: trino...

8.8CVSS7.1AI score0.02276EPSS
Exploits0
Chainguard
Chainguard
added 2022/07/28 9:15 a.m.11 views

CVE-2022-36364 vulnerabilities

Vulnerabilities for packages: trino...

8.8CVSS6.9AI score0.02276EPSS
Exploits0
CVE
CVE
added 2022/07/28 8:35 a.m.356 views

CVE-2022-36364

Apache Calcite Avatica JDBC driver is affected by CVE-2022-36364 due to insecure dynamic instantiation of httpclient_impl classes without validating they implement the expected interface, enabling potential code execution loaded from arbitrary classes. The issue is addressed starting with Avatica...

8.8CVSS8.9AI score0.02276EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder