CVE-2022-23221

Published: 2022-01-19T17:15Z

Last Modified: 2024-11-21T06:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

H2 Console before 2.1.210 allows remote attackers to execute arbitrary code via a jdbc:h2:mem JDBC URL containing the IGNORE_UNKNOWN_SETTINGS=TRUE;FORBID_CREATION=FALSE;INIT=RUNSCRIPT substring, a different vulnerability than CVE-2021-42392. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt