VYPR
High severityNVD Advisory· Published Dec 24, 2024· Updated Oct 14, 2025

SQL Injection in the Amazon Redshift JDBC Driver affecting v2.1.0.31

CVE-2024-12744

Description

A SQL injection in the Amazon Redshift JDBC Driver in v2.1.0.31 allows a user to gain escalated privileges via the getSchemas, getTables, or getColumns Metadata APIs. Users should upgrade to the driver version 2.1.0.32 or revert to driver version 2.1.0.30.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
com.amazon.redshift:redshift-jdbc42Maven
>= 2.1.0.31, < 2.1.0.322.1.0.32

Affected products

2

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.