3 matches found
Astra Linux – Vulnerability in h2database
The H2 Console before version 2.1.210 allowed remote attackers to execute arbitrary code through a jdbc:h2:mem JDBC URL that contained the IGNOREUNKNOWNSETTINGS=TRUE;FORBID CREATION=FALSE;INIT=RUNSCRIPT substring. This is a different vulnerability than CVE-2021-42392. source-iocs-preserved...
The vulnerability of the H2 database management system, related to improper code generation, allows a hacker to execute arbitrary code.
The vulnerability of the H2 database management system is related to incorrect code generation management. Exploiting this vulnerability allows an attacker to execute arbitrary code using the jdbc:h2:mem function. The settings contained in this function are as follows: IGNOREUNKNOWNSETTINGS=TRUE;...
DEBIAN-CVE-2022-23221
H2 Console before 2.1.210 allows remote attackers to execute arbitrary code via a jdbc:h2:mem JDBC URL containing the IGNOREUNKNOWNSETTINGS=TRUE;FORBIDCREATION=FALSE;INIT=RUNSCRIPT substring, a different vulnerability than CVE-2021-42392...