VYPR

Jena SDB

by Apache

CVEs (1)

  • CVE-2022-45136Nov 14, 2022
    risk 0.00cvss epss 0.02

    Apache Jena SDB 3.17.0 and earlier is vulnerable to a JDBC Deserialisation attack if the attacker is able to control the JDBC URL used or cause the underlying database server to return malicious data. The mySQL JDBC driver in particular is known to be vulnerable to this class of…