Vulnerability CVE-2022-23221

Vulnerability CVE-2022-23221

Published: 2022-01-19

Description:

Type:

(Improper Control of Generation of Code ('Code Injection'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
10/10	10/10	10/10

Affected software
H2database -> H2

https://github.com/h2database/h2database/security/advisories

https://github.com/h2database/h2database/releases/tag/version-2.1.210

https://twitter.com/d0nkey_man/status/1483824727936450564

http://seclists.org/fulldisclosure/2022/Jan/39

http://packetstormsecurity.com/files/165676/H2-Database-Console-Remote-Code-Execution.html