Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52643

Malicious code in bioql PyPI...

8.7CVSS6.6AI score0.00543EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:12 a.m.7 views

CVE-2024-54660

A JNDI injection issue was discovered in Cloudera JDBC Connector for Hive before 2.6.26 and JDBC Connector for Impala before 2.6.35. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the...

8.7CVSS8AI score0.00543EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/16 12:0 a.m.7 views

CVE-2024-54660

A JNDI injection issue was discovered in Cloudera JDBC Connector for Hive before 2.6.26 and JDBC Connector for Impala before 2.6.35. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the...

9AI score0.00543EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 12:0 a.m.60 views

CVE-2024-54660

CVE-2024-54660 affects Cloudera JDBC Connector for Hive (before 2.6.26) and JDBC Connector for Impala (before 2.6.35). The issue is a JNDI injection triggered by untrusted values in the JAAS-using krbJAASFile parameter within the JDBC URL during connection, allowing potential remote code executio...

8.7CVSS8AI score0.00543EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/16 12:0 a.m.13 views

CVE-2024-54660

A JNDI injection issue was discovered in Cloudera JDBC Connector for Hive before 2.6.26 and JDBC Connector for Impala before 2.6.35. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the...

0.00543EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/07 12:7 p.m.41 views

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer operands that use the JDBC connector may be vulnerable to denial of service due to CVE-2022-25647

Summary Google Gson is used by IBM App Connect Enterprise Certified Container in the JDBC connector. IBM App Connect Enterprise Certified Container IntegrationServer operands that use the JDBC connector may be vulnerable to denial of service. This bulletin provides patch information to address th...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2022/01/06 12:35 p.m.43 views

CVE-2021-36774 Mysql JDBC Connector Deserialize RCE

Apache Kylin allows users to read data from other database systems using JDBC. The MySQL JDBC driver supports certain properties, which, if left unmitigated, can allow an attacker to execute arbitrary code from a hacker-controlled malicious MySQL server within Kylin server processes. This issue...

6.9AI score0.01948EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2012/08/29 12:0 a.m.16 views

(0Day) HP Operations Orchestration RSScheduler Service JDBC Connector Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP Operations Orchestration. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RSScheduler service JDBC component of Operations Orchestra which liste...

10CVSS9.1AI score
Exploits0References1
Rows per page
Query Builder