Known Vulnerabilities for Derby by Apache
Listed below are 7 of the newest known vulnerabilities associated with "Derby" by "Apache".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-1313 | In Apache Derby 10.3.1.4 to 10.14.1.0, a specially-crafted network packet can be used to request the Derby Network Server to ... | 5.3 - MEDIUM | 2018-05-07 | 2023-11-07 |
| CVE-2015-1832 | XML external entity (XXE) vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager... | 9.1 - CRITICAL | 2016-10-03 | 2023-11-07 |
| CVE-2010-2232 | In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export processing may allow an attacker to overwrite an existing ... | 7.5 - HIGH | 2017-10-23 | 2017-10-27 |
| CVE-2009-4269 | The password hash generation algorithm in the BUILTIN authentication functionality for Apache Derby before 10.6.1.0 performs ... | 2.1 - LOW | 2010-08-16 | 2011-01-26 |
| CVE-2006-7217 | Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which all... | 4 - MEDIUM | 2007-07-05 | 2008-09-05 |
| CVE-2006-7216 | Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and con... | 4 - MEDIUM | 2007-07-05 | 2008-09-05 |
| CVE-2005-4849 | Apache Derby before 10.1.2.1 exposes the (1) user and (2) password attributes in cleartext via (a) the RDBNAM parameter of th... | 5 - MEDIUM | 2005-12-31 | 2008-09-05 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Apache | Derby | 10.9.1.0 | All | All | All |
| Application | Apache | Derby | 10.8.3.0 | All | All | All |
| Application | Apache | Derby | 10.8.2.2 | All | All | All |
| Application | Apache | Derby | 10.8.1.2 | All | All | All |
| Application | Apache | Derby | 10.7.1.1 | All | All | All |
| Application | Apache | Derby | 10.6.2.1 | All | All | All |
| Application | Apache | Derby | 10.6.1.0 | All | All | All |
| Application | Apache | Derby | 10.5.3.0 | All | All | All |
| Application | Apache | Derby | 10.5.2.0 | All | All | All |
| Application | Apache | Derby | 10.5.1.1 | All | All | All |
| Application | Apache | Derby | 10.4.2.0 | All | All | All |
| Application | Apache | Derby | 10.4.1.3 | All | All | All |
| Application | Apache | Derby | 10.3.3.0 | All | All | All |
| Application | Apache | Derby | 10.3.2.1 | All | All | All |
| Application | Apache | Derby | 10.3.1.4 | All | All | All |
| Application | Apache | Derby | 10.2.2.0 | All | All | All |
| Application | Apache | Derby | 10.2.1.6 | All | All | All |
| Application | Apache | Derby | 10.15.1.3 | All | All | All |
| Application | Apache | Derby | 10.14.2.0 | All | All | All |
| Application | Apache | Derby | 10.14.1.0 | All | All | All |