Filtered by vendor Cognitect Subscriptions
Filtered by product Datomic Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-10054 2 Cognitect, H2database 2 Datomic, H2 2024-11-21 8.8 High
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."