2 matches found
GHSA-WQM3-W3P6-XJGM Apache Flink CDC is vulnerable to SQL Injection through maliciously crafted identifiers
Apache Flink CDC version 3.0.0 to before 3.5.0 are vulnerable to a SQL injection via maliciously crafted identifiers eg. crafted database name or crafted table name. Even through only the logged-in database user can trigger the attack, users are recommended to update Flink CDC version to 3.5.0...
Apache Flink CDC is vulnerable to SQL Injection through maliciously crafted identifiers
Apache Flink CDC version 3.0.0 to before 3.5.0 are vulnerable to a SQL injection via maliciously crafted identifiers eg. crafted database name or crafted table name. Even through only the logged-in database user can trigger the attack, users are recommended to update Flink CDC version to 3.5.0...