pkg:maven/org.apache.derby/derby
Type
maven
Namespace
org.apache.derby
Name
derby
Known advisories, vulnerabilities and fixes for org.apache.derby/derby package.
Critical
2
High
1
Moderate
4
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | >= 10.3.1.4, <= 10.14.1.0 |
CVE-2018-1313
|
 MAVEN:GHSA-42XW-P62X-HWCF
|
Improper Access Control in Apache Derby | moderate |
2022-05-13T01:02:18
(2 years ago) |
|
| Fixed | = 10.14.2.0 |
CVE-2018-1313
|
MAVEN:GHSA-42XW-P62X-HWCF
|
Improper Access Control in Apache Derby | moderate |
2022-05-13T01:02:18
(2 years ago) |
|
| Affected | <= 10.5.3.01 |
CVE-2009-4269
|
MAVEN:GHSA-FH32-35W2-RXCC
|
Use of Password Hash With Insufficient Computational Effort in Apache Derby | moderate |
2022-05-02T03:53:13
(2 years ago) |
|
| Fixed | = 10.6.1.0 |
CVE-2009-4269
|
MAVEN:GHSA-FH32-35W2-RXCC
|
Use of Password Hash With Insufficient Computational Effort in Apache Derby | moderate |
2022-05-02T03:53:13
(2 years ago) |
|
| Affected | >= 10.1.1.0, < 10.17.1.0 |
CVE-2022-46337
|
MAVEN:GHSA-RCJC-C4PJ-XXRP
|
Apache Derby: LDAP injection vulnerability in authenticator | critical |
2023-11-20T09:30:31
(10 months ago) |
|
| Fixed | = 10.17.1.0 |
CVE-2022-46337
|
MAVEN:GHSA-RCJC-C4PJ-XXRP
|
Apache Derby: LDAP injection vulnerability in authenticator | critical |
2023-11-20T09:30:31
(10 months ago) |
|
| Affected | <= 10.1.1.0 |
CVE-2005-4849
|
MAVEN:GHSA-RP7R-79RM-2758
|
Apache Derby exposes user and password attributes | moderate |
2022-05-01T02:31:27
(2 years ago) |
|
| Fixed | = 10.1.2.1 |
CVE-2005-4849
|
MAVEN:GHSA-RP7R-79RM-2758
|
Apache Derby exposes user and password attributes | moderate |
2022-05-01T02:31:27
(2 years ago) |
|
| Affected | < 10.2.1.6 |
CVE-2006-7217
|
MAVEN:GHSA-V7CQ-PQ7V-MH5V
|
Apache Derby SQL Injection | moderate |
2022-05-01T07:45:41
(2 years ago) |
|
| Fixed | = 10.2.1.6 |
CVE-2006-7217
|
MAVEN:GHSA-V7CQ-PQ7V-MH5V
|
Apache Derby SQL Injection | moderate |
2022-05-01T07:45:41
(2 years ago) |
|
| Affected | <= 10.11.1.1 |
CVE-2015-1832
|
MAVEN:GHSA-WR69-G62G-2R9H
|
Improper Restriction of XML External Entity Reference in Apace Derby | critical |
2022-05-13T01:14:26
(2 years ago) |
|
| Fixed | = 10.12.1.1 |
CVE-2015-1832
|
MAVEN:GHSA-WR69-G62G-2R9H
|
Improper Restriction of XML External Entity Reference in Apace Derby | critical |
2022-05-13T01:14:26
(2 years ago) |
|
| Affected | >= 10.1.2.1, <= 10.4.1.3 |
CVE-2010-2232
|
MAVEN:GHSA-XPRW-XVVM-VQMV
|
Improper Access Control in Apache Derby | high |
2022-05-17T00:29:52
(2 years ago) |
|
| Fixed | = 10.4.2.0 |
CVE-2010-2232
|
MAVEN:GHSA-XPRW-XVVM-VQMV
|
Improper Access Control in Apache Derby | high |
2022-05-17T00:29:52
(2 years ago) |