H2database H2 : List Of Security Vulnerabilities - CVE Details

Documentation Documentation

• Log in

CVEdetails.com powered by SecurityScorecard Vulnerabilities By Date By Type Known Exploited Assigners CVSS Scores EPSS Scores Search Vulnerable Software Vendors Products Version Search Vulnerability Intel. Newsfeed Open Source Vulns Emerging CVEs Feeds Exploits Advisories Code Repositories Code Changes Attack Surface My Attack Surface Digital Footprint Discovered Products Detected Vulns IP Search Other Metasploit Modules CWE Definitions CAPEC Definitions Articles Blog H2database » H2 : Security Vulnerabilities, CVEs Published in:

• 2024 January February March April May June July August September October November
• 2023 January February March April May June July August September October November December
• 2022 January February March April May June July August September October November December
• 2021 January February March April May June July August September October November December
• 2020 January February March April May June July August September October November December

2024 January February March April May June July August September October November CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9 In CISA KEV Catalog Sort Results By : Publish Date Update Date CVE Number CVE Number CVSS Score EPSS Score Copy

CVE-2022-45868

The web-based admin console in H2 Database Engine before 2.2.220 can be started via the CLI with the argument -webAdminPassword, which allows the user to specify the password in cleartext for the web admin console. Consequently, a local user (or an attacker that has obtained local access through some means) would be able to discover the password by listing processes and their arguments. NOTE: the vendor states "This is not a vulnerability of H2 Console ... Passwords should never be passed on the command line and every qualified DBA or system administrator is expected to know that." Nonetheless, the issue was fixed in 2.2.220. Source: MITRE Max CVSS 8.4 EPSS Score 0.04% Published 2022-11-23 Updated 2024-08-03

CVE-2022-23221

H2 Console before 2.1.210 allows remote attackers to execute arbitrary code via a jdbc:h2:mem JDBC URL containing the IGNORE_UNKNOWN_SETTINGS=TRUE;FORBID_CREATION=FALSE;INIT=RUNSCRIPT substring, a different vulnerability than CVE-2021-42392. Source: MITRE Max CVSS 10.0 EPSS Score 4.39% Published 2022-01-19 Updated 2023-08-18

CVE-2021-42392

The org.h2.util.JdbcUtils.getConnection method of the H2 database takes as parameters the class name of the driver and URL of the database. An attacker may pass a JNDI driver name and a URL leading to a LDAP or RMI servers, causing remote code execution. This can be exploited through various attack vectors, most notably through the H2 Console which leads to unauthenticated remote code execution. Source: JFrog Max CVSS 10.0 EPSS Score 49.82% Published 2022-01-10 Updated 2023-02-24

CVE-2021-23463

The package com.h2database:h2 from 1.4.198 and before 2.0.202 are vulnerable to XML External Entity (XXE) Injection via the org.h2.jdbc.JdbcSQLXML class object, when it receives parsed string data from org.h2.jdbc.JdbcResultSet.getSQLXML() method. If it executes the getSource() method when the parameter is DOMSource.class it will trigger the vulnerability. Source: Snyk Max CVSS 9.1 EPSS Score 1.04% Published 2021-12-10 Updated 2023-08-18

CVE-2018-14335

An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database file. Source: MITRE Max CVSS 6.5 EPSS Score 1.69% Published 2018-07-24 Updated 2024-10-29

CVE-2018-10054

H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment." Source: MITRE Max CVSS 8.8 EPSS Score 26.00% Published 2018-04-11 Updated 2024-08-05 This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy. By using this web site you are agreeing to CVEdetails.com terms of use! Accept Close