CVE-2022-31764
CVE-2022-31764
Título es
CVE-2022-31764
Jue, 06/02/2025 – 15:15
Tipo
CWE-913
Gravedad 2.0 Txt
Pendiente de análisis
Título en
CVE-2022-31764
Descripción en
The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by constructing a special JDBC URL of H2 database. This issue affects Apache ShardingSphere ElasticJob-UI version 3.0.1 and prior versions. This vulnerability has been fixed in ElasticJob-UI 3.0.2.
The premise of this attack is that the attacker has obtained the account and password. Otherwise, the attacker cannot perform this attack.
The premise of this attack is that the attacker has obtained the account and password. Otherwise, the attacker cannot perform this attack.
06/02/2025
06/02/2025
Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)
Pendiente de análisis
Enviar en el boletín
Off