VYPR

c3p0

by Debian

CVEs (1)

  • CVE-2026-55223Jul 3, 2026
    risk 0.00cvss epss

    c3p0 is a JDBC Connection pooling library. In versions prior to 0.14.0, c3p0 in combination with other libraries, can compose to a "sink" for deserialization gadgets. The JDBC spec's DataSource.getConnection() and ConnectionPoolDataSource.getPooledConnection() match the…