← Back

Datomic

datomic

Vendor: Cognitect • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-10054
2Cognitect
H2database
2Datomic
H2
Nov 21, 2024
Apr 11, 2018
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside o...Show more
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."Show less