VYPR

Redshift ODBC Driver

by Amazon

Source repositories

CVEs (3)

  • CVE-2024-12746Dec 24, 2024
    risk 0.00cvss epss 0.00

    A SQL injection in the Amazon Redshift ODBC Driver v2.1.5.0 (Windows or Linux) allows a user to gain escalated privileges via the SQLTables or SQLColumns Metadata APIs. Users are recommended to upgrade to the driver version 2.1.6.0 or revert to driver version 2.1.4.0.

  • CVE-2024-12744Dec 24, 2024
    risk 0.00cvss epss 0.01

    A SQL injection in the Amazon Redshift JDBC Driver in v2.1.0.31 allows a user to gain escalated privileges via the getSchemas, getTables, or getColumns Metadata APIs. Users should upgrade to the driver version 2.1.0.32 or revert to driver version 2.1.0.30.

  • CVE-2022-41828Sep 29, 2022
    risk 0.00cvss epss 0.01

    In Amazon AWS Redshift JDBC Driver (aka amazon-redshift-jdbc-driver or redshift-jdbc42) before 2.1.0.8, the Object Factory does not check the class type when instantiating an object from a class name.