Vulnerability Details CVE-2018-10054
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.155
EPSS Ranking 94.3%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://blog.datomic.com/2018/03/important-security-update.html
- https://forum.datomic.com/t/important-security-update-0-9-5697/379
- https://github.com/h2database/h2database/issues/1225
- https://github.com/h2database/h2database/issues/1808#issuecomment-599203115
- https://github.com/h2database/h2database/issues/3099
- https://lists.apache.org/thread.html/582d4165de6507b0be82d5a6f9a1ce392ec43a00c9fed32bacf7fe1e%40%3Cuser.ignite.apache.org%3E
- https://lists.apache.org/thread.html/r8aaf4ee16bbaf6204731d4770d96ebb34b258cd79b491f9cdd7f2540%40%3Ccommits.nifi.apache.org%3E
- https://mthbernardes.github.io/rce/2018/03/14/abusing-h2-database-alias.html
- https://security.netapp.com/advisory/ntap-20240719-0003/
- https://www.exploit-db.com/exploits/44422/
- http://blog.datomic.com/2018/03/important-security-update.html
- https://forum.datomic.com/t/important-security-update-0-9-5697/379
- https://github.com/h2database/h2database/issues/1225
- https://github.com/h2database/h2database/issues/1808#issuecomment-599203115
- https://github.com/h2database/h2database/issues/3099
- https://lists.apache.org/thread.html/582d4165de6507b0be82d5a6f9a1ce392ec43a00c9fed32bacf7fe1e%40%3Cuser.ignite.apache.org%3E
- https://lists.apache.org/thread.html/r8aaf4ee16bbaf6204731d4770d96ebb34b258cd79b491f9cdd7f2540%40%3Ccommits.nifi.apache.org%3E
- https://mthbernardes.github.io/rce/2018/03/14/abusing-h2-database-alias.html
- https://security.netapp.com/advisory/ntap-20240719-0003/
- https://www.exploit-db.com/exploits/44422/
Products affected by CVE-2018-10054
-
cpe:2.3:a:cognitect:datomic:0.8.3335
-
cpe:2.3:a:cognitect:datomic:0.8.3343
-
cpe:2.3:a:cognitect:datomic:0.8.3372
-
cpe:2.3:a:cognitect:datomic:0.8.3397
-
cpe:2.3:a:cognitect:datomic:0.8.3423
-
cpe:2.3:a:cognitect:datomic:0.8.3435
-
cpe:2.3:a:cognitect:datomic:0.8.3439
-
cpe:2.3:a:cognitect:datomic:0.8.3460
-
cpe:2.3:a:cognitect:datomic:0.8.3470
-
cpe:2.3:a:cognitect:datomic:0.8.3479
-
cpe:2.3:a:cognitect:datomic:0.8.3488
-
cpe:2.3:a:cognitect:datomic:0.8.3511
-
cpe:2.3:a:cognitect:datomic:0.8.3520
-
cpe:2.3:a:cognitect:datomic:0.8.3524
-
cpe:2.3:a:cognitect:datomic:0.8.3538
-
cpe:2.3:a:cognitect:datomic:0.8.3546
-
cpe:2.3:a:cognitect:datomic:0.8.3551
-
cpe:2.3:a:cognitect:datomic:0.8.3561
-
cpe:2.3:a:cognitect:datomic:0.8.3591
-
cpe:2.3:a:cognitect:datomic:0.8.3595
-
cpe:2.3:a:cognitect:datomic:0.8.3599
-
cpe:2.3:a:cognitect:datomic:0.8.3611
-
cpe:2.3:a:cognitect:datomic:0.8.3619
-
cpe:2.3:a:cognitect:datomic:0.8.3627
-
cpe:2.3:a:cognitect:datomic:0.8.3646
-
cpe:2.3:a:cognitect:datomic:0.8.3655
-
cpe:2.3:a:cognitect:datomic:0.8.3664
-
cpe:2.3:a:cognitect:datomic:0.8.3692
-
cpe:2.3:a:cognitect:datomic:0.8.3704
-
cpe:2.3:a:cognitect:datomic:0.8.3705
-
cpe:2.3:a:cognitect:datomic:0.8.3731
-
cpe:2.3:a:cognitect:datomic:0.8.3767
-
cpe:2.3:a:cognitect:datomic:0.8.3784
-
cpe:2.3:a:cognitect:datomic:0.8.3789
-
cpe:2.3:a:cognitect:datomic:0.8.3803
-
cpe:2.3:a:cognitect:datomic:0.8.3814
-
cpe:2.3:a:cognitect:datomic:0.8.3826
-
cpe:2.3:a:cognitect:datomic:0.8.3843
-
cpe:2.3:a:cognitect:datomic:0.8.3848
-
cpe:2.3:a:cognitect:datomic:0.8.3861
-
cpe:2.3:a:cognitect:datomic:0.8.3862
-
cpe:2.3:a:cognitect:datomic:0.8.3889
-
cpe:2.3:a:cognitect:datomic:0.8.3895
-
cpe:2.3:a:cognitect:datomic:0.8.3899
-
cpe:2.3:a:cognitect:datomic:0.8.3941
-
cpe:2.3:a:cognitect:datomic:0.8.3952
-
cpe:2.3:a:cognitect:datomic:0.8.3960
-
cpe:2.3:a:cognitect:datomic:0.8.3970
-
cpe:2.3:a:cognitect:datomic:0.8.3971
-
cpe:2.3:a:cognitect:datomic:0.8.3993
-
cpe:2.3:a:cognitect:datomic:0.8.4007
-
cpe:2.3:a:cognitect:datomic:0.8.4020
-
cpe:2.3:a:cognitect:datomic:0.8.4020.24
-
cpe:2.3:a:cognitect:datomic:0.8.4111
-
cpe:2.3:a:cognitect:datomic:0.8.4122
-
cpe:2.3:a:cognitect:datomic:0.8.4138
-
cpe:2.3:a:cognitect:datomic:0.8.4143
-
cpe:2.3:a:cognitect:datomic:0.8.4159
-
cpe:2.3:a:cognitect:datomic:0.8.4215
-
cpe:2.3:a:cognitect:datomic:0.8.4218
-
cpe:2.3:a:cognitect:datomic:0.8.4254
-
cpe:2.3:a:cognitect:datomic:0.8.4260
-
cpe:2.3:a:cognitect:datomic:0.8.4270
-
cpe:2.3:a:cognitect:datomic:0.9.4314
-
cpe:2.3:a:cognitect:datomic:0.9.4324
-
cpe:2.3:a:cognitect:datomic:0.9.4331
-
cpe:2.3:a:cognitect:datomic:0.9.4353
-
cpe:2.3:a:cognitect:datomic:0.9.4360
-
cpe:2.3:a:cognitect:datomic:0.9.4384
-
cpe:2.3:a:cognitect:datomic:0.9.4470
-
cpe:2.3:a:cognitect:datomic:0.9.4497
-
cpe:2.3:a:cognitect:datomic:0.9.4532
-
cpe:2.3:a:cognitect:datomic:0.9.4556
-
cpe:2.3:a:cognitect:datomic:0.9.4572
-
cpe:2.3:a:cognitect:datomic:0.9.4578
-
cpe:2.3:a:cognitect:datomic:0.9.4609
-
cpe:2.3:a:cognitect:datomic:0.9.4699
-
cpe:2.3:a:cognitect:datomic:0.9.4707
-
cpe:2.3:a:cognitect:datomic:0.9.4714
-
cpe:2.3:a:cognitect:datomic:0.9.4718
-
cpe:2.3:a:cognitect:datomic:0.9.4724
-
cpe:2.3:a:cognitect:datomic:0.9.4745
-
cpe:2.3:a:cognitect:datomic:0.9.4752
-
cpe:2.3:a:cognitect:datomic:0.9.4755
-
cpe:2.3:a:cognitect:datomic:0.9.4766
-
cpe:2.3:a:cognitect:datomic:0.9.4815
-
cpe:2.3:a:cognitect:datomic:0.9.4880
-
cpe:2.3:a:cognitect:datomic:0.9.4880.2
-
cpe:2.3:a:cognitect:datomic:0.9.4880.6
-
cpe:2.3:a:cognitect:datomic:0.9.4894
-
cpe:2.3:a:cognitect:datomic:0.9.4899
-
cpe:2.3:a:cognitect:datomic:0.9.4956
-
cpe:2.3:a:cognitect:datomic:0.9.5052
-
cpe:2.3:a:cognitect:datomic:0.9.5067
-
cpe:2.3:a:cognitect:datomic:0.9.5078
-
cpe:2.3:a:cognitect:datomic:0.9.51.30
-
cpe:2.3:a:cognitect:datomic:0.9.5153
-
cpe:2.3:a:cognitect:datomic:0.9.5173
-
cpe:2.3:a:cognitect:datomic:0.9.5186
-
cpe:2.3:a:cognitect:datomic:0.9.5198
-
cpe:2.3:a:cognitect:datomic:0.9.5201
-
cpe:2.3:a:cognitect:datomic:0.9.5206
-
cpe:2.3:a:cognitect:datomic:0.9.5302
-
cpe:2.3:a:cognitect:datomic:0.9.5327
-
cpe:2.3:a:cognitect:datomic:0.9.5344
-
cpe:2.3:a:cognitect:datomic:0.9.5350
-
cpe:2.3:a:cognitect:datomic:0.9.5359
-
cpe:2.3:a:cognitect:datomic:0.9.5372
-
cpe:2.3:a:cognitect:datomic:0.9.5385
-
cpe:2.3:a:cognitect:datomic:0.9.5390
-
cpe:2.3:a:cognitect:datomic:0.9.5394
-
cpe:2.3:a:cognitect:datomic:0.9.5404
-
cpe:2.3:a:cognitect:datomic:0.9.5407
-
cpe:2.3:a:cognitect:datomic:0.9.5530
-
cpe:2.3:a:cognitect:datomic:0.9.5554
-
cpe:2.3:a:cognitect:datomic:0.9.5561
-
cpe:2.3:a:cognitect:datomic:0.9.5561.50
-
cpe:2.3:a:cognitect:datomic:0.9.5561.54
-
cpe:2.3:a:cognitect:datomic:0.9.5561.56
-
cpe:2.3:a:cognitect:datomic:0.9.5561.59
-
cpe:2.3:a:cognitect:datomic:0.9.5561.62
-
cpe:2.3:a:cognitect:datomic:0.9.5651
-
cpe:2.3:a:cognitect:datomic:0.9.5656
-
cpe:2.3:a:cognitect:datomic:0.9.5661
-
cpe:2.3:a:h2database:h2:1.4.197