pkg:maven/com.h2database/h2

Type maven

Namespace com.h2database

Name h2

Known advisories, vulnerabilities and fixes for com.h2database/h2 package.

Repository: https://mvnrepository.com/artifact/com.h2database/h2

Critical 2

High 2

Type	Version	Distribution	# CVEs	# Advisory ID	Title	Severity	Published
Affected	< 2.2.220		CVE-2022-45868	MAVEN:GHSA-22WJ-VF5F-WRVJ	Password exposure in H2 Database	high	2022-11-23T21:30:31 (22 months ago)
Fixed	= 2.2.220		CVE-2022-45868	MAVEN:GHSA-22WJ-VF5F-WRVJ	Password exposure in H2 Database	high	2022-11-23T21:30:31 (22 months ago)
Affected	< 2.1.210		CVE-2022-23221	MAVEN:GHSA-45HX-WFHJ-473X	Arbitrary code execution in H2 Console	critical	2022-01-21T23:07:39 (2 years ago)
Fixed	= 2.1.210		CVE-2022-23221	MAVEN:GHSA-45HX-WFHJ-473X	Arbitrary code execution in H2 Console	critical	2022-01-21T23:07:39 (2 years ago)
Affected	>= 1.4.198, < 2.0.202		CVE-2021-23463	MAVEN:GHSA-7RPJ-HG47-CX62	Improper Restriction of XML External Entity Reference in com.h2database:h2.	high	2021-12-16T14:29:57 (2 years ago)
Fixed	= 2.0.202		CVE-2021-23463	MAVEN:GHSA-7RPJ-HG47-CX62	Improper Restriction of XML External Entity Reference in com.h2database:h2.	high	2021-12-16T14:29:57 (2 years ago)
Affected	>= 1.1.100, < 2.0.206		CVE-2021-42392	MAVEN:GHSA-H376-J262-VHQ6	RCE in H2 Console	critical	2022-01-06T23:55:09 (2 years ago)
Fixed	= 2.0.206		CVE-2021-42392	MAVEN:GHSA-H376-J262-VHQ6	RCE in H2 Console	critical	2022-01-06T23:55:09 (2 years ago)