QID 981015
QID 981015: Java (maven) Security Update for org.apache.hive:hive-jdbc (GHSA-jf2m-435m-mxw8)
This vulnerability in Apache Hive JDBC driver 0.7.1 to 2.3.2 allows carefully crafted arguments to be used to bypass the argument escaping/cleanup that JDBC driver does in PreparedStatement implementation.
Successful exploitation of this vulnerability may affect the confidentiality, integrity, and availability of the targeted user.
Solution
Customers are advised to refer to GHSA-jf2m-435m-mxw8 for updates pertaining to this vulnerability.
Vendor References
- GHSA-jf2m-435m-mxw8 -
github.com/advisories/GHSA-jf2m-435m-mxw8
CVEs related to QID 981015
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-jf2m-435m-mxw8 | org.apache.hive:hive-jdbc |
|