Cognitect: >> Datomic >> 0.8.3470 Security Vulnerabilities
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."
CVSS Score
8.8
EPSS Score
0.202
Published
2018-04-11