📦

datomic

Vendor: cognitect

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 71.58% Exploit Prob.

Latest CVE CVE-2018-10054 Apr 11

Security Vulnerability Index

Page 1 / 1

8.8 CVSS

CVE-2018-10054

RCE

H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."

EPSS: 71.58%

Severity: HIGH

Apr 11, 2018

Displaying 1 of 1 Total Entries

Total 1 Sections