5 matches found
CVE-2024-45198
insightsoftware Spark JDBC 2.6.21 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution...
CVE-2024-45198
creationtimestamp| type| source ---|---|--- 2025-04-03 21:06:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmf6je42c 2025-04-03 23:36:29+00:00| seen| https://t.me/cvedetector/22028...
CVE-2024-45198
insightsoftware Spark JDBC 2.6.21 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution...
CVE-2024-45198
The connected documents confirm a vulnerability in insightsoftware Spark JDBC 2.6.21 where malicious parameters injected into the JDBC URL can trigger a JNDI injection during the connection process, leading to remote code execution. The issue affects Spark JDBC driver behavior during URL handling...
CVE-2024-45198
insightsoftware Spark JDBC 2.6.21 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution...