all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Unauthenticated RCE in H2 Database Console is similar to Log4Shell

Add to bookmarks
Jan. 8, 2022, 7:53 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Researchers disclosed a critical RCE flaw in the H2 open-source Java SQL database which is similar to the Log4J vulnerability. Jfrog researchers discovered a critical vulnerability in the H2 open-source Java SQL database related to the Log4Shell Log4J vulnerability. The flaw, tracked as CVE-2021-42392, could allow attackers to execute remote code on vulnerable systems, the […]


The post Unauthenticated RCE in H2 Database Console is similar to Log4Shell appeared first on Security Affairs.

breaking news database h2 h2 database hacking hacking news information security news it information security log4shell pierluigi paganini rce security

Visit resource

More from securityaffairs.co / Security Affairs

Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks 12 hours ago | securityaffairs.co
actor adaptive security apt arcanedoor +32
Hackers hijacked the eScan Antivirus update mechanism in malware campaign 19 hours ago | securityaffairs.co
antivirus avast backdoors breaking news +27
US offers a $10 million reward for information on four Iranian nationals 1 day, 1 hour ago | securityaffairs.co
10 million assets breaking news contractors +26
The street lights in Leicester City cannot be turned off due to a cyber attack 1 day, 2 hours ago | securityaffairs.co
attack authority breaking news city +14
North Korea-linked APT groups target South Korean defense contractors 1 day, 13 hours ago | securityaffairs.co
agency andariel apt apt groups +29
U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity 2 days, 1 hour ago | securityaffairs.co
business commercial commercial spyware department +19
A cyber attack paralyzed operations at Synlab Italia 2 days, 2 hours ago | securityaffairs.co
april attack breaking news cyber +15
Russia-linked APT28 used post-compromise tool GooseEgg to exploit CVE-2022-38028 Windows flaw 2 days, 11 hours ago | securityaffairs.co
apt apt28 blizzard breaking news +24
Hackers threaten to leak a copy of the World-Check database used to assess potential risks … 2 days, 19 hours ago | securityaffairs.co
breaking news check claims copy +27

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Systems Security Officer (ISSO) (Remote within HR Virginia area)

@ OneZero Solutions | Portsmouth, VA, USA
View on infosec-jobs.com

Security Analyst

@ UNDP | Tripoli (LBY), Libya
View on infosec-jobs.com

Senior Incident Response Consultant

@ Google | United Kingdom
View on infosec-jobs.com

Product Manager II, Threat Intelligence, Google Cloud

@ Google | Austin, TX, USA; Reston, VA, USA
View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India
View on infosec-jobs.com
View more jobs