You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ignite.apache.org by Vishwas Bm <bm...@gmail.com> on 2022/01/07 11:25:00 UTC

CVE-2021-42392

Is ignite impacted by CVE-2021-42392 ?

https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/


Regards,
Vishwas

Re: CVE-2021-42392

Posted by Ivan Pavlukhin <vo...@gmail.com>.

AFAIR, H2 console was disabled [1]

[1] https://issues.apache.org/jira/browse/IGNITE-11333

2022-01-07 14:25 GMT+03:00, Vishwas Bm <bm...@gmail.com>:
> Is ignite impacted by CVE-2021-42392 ?
>
> https://jfrog.com/blog/the-jndi-strikes-back-unauthenticated-rce-in-h2-database-console/
>
>
> Regards,
> Vishwas
>


-- 

Best regards,
Ivan Pavlukhin