CVE-2021-42392

CVE-2021-42392 affects the H2 database (org.h2.util.JdbcUtils.getConnection) where a crafted driver class name and JDBC URL can trigger remote code execution, notably via the H2 Console. Exploitation possible through JNDI-driven URL resolution to LDAP/RMI servers; impact is remote code execution ...

CVE-2022-23221

H2Database/H2 Console, affected version before 2.1.210, is vulnerable to remote code execution via a crafted JDBC URL in the H2 Console. The vulnerability is triggered by a substring in the URL jdbc:h2:mem with IGNORE_UNKNOWN_SETTINGS=TRUE;FORBID_CREATION=FALSE;INIT=RUNSCRIPT, enabling arbitrary ...

CVE-2022-45868

CVE-2022-45868 affects H2 Database Engine prior to 2.2.220. The web-based admin console can be started from the CLI with the -webAdminPassword argument, allowing the password to be passed in cleartext and discovered by a local user or someone with local access by listing processes and their argum...

CVE-2021-23463

CVE-2021-23463 affects com.h2database:h2 (versions 1.4.198 and earlier, up to 2.0.202). The root cause is improper handling of XML External Entity (XXE) declarations in JdbcSQLXML; if getSource() is invoked with DOMSource.class via JdbcResultSet.getSQLXML(), an attacker could trigger XXE to read ...

CVE-2018-10054

CVE-2018-10054 describes an RCE in H2 Database via the CREATE ALIAS mechanism. The issue affects H2 1.4.197 as used in Datomic before 0.9.5697 and other products, enabling remote code execution by an attacker with a crafted alias. Public references note exploit activity and Java code execution vi...

CVE-2018-14335

The CVE-2018-14335 entry concerns H2 Database 1.4.197, where insecure handling of permissions in the backup function allows an attacker to read files outside their permissions via a symlink to a fake database file. Impact is information disclosure (CVE scores indicate Medium to High confidentiali...