Known Vulnerabilities for C3p0 by Mchange
Listed below are 2 of the newest known vulnerabilities associated with "C3p0" by "Mchange".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-55223 json | c3p0 is a JDBC Connection pooling library. In versions prior to 0.14.0, c3p0 in combination with other libraries, can compos... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-55153 json | mchange-commons-java is a Java library of shared utility classes used by mchange projects like the c3p0 connection pool. Prio... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2026-27830 json | c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objects and `javax.n... | Not Provided | 2026-02-26 | 2026-06-30 |
| CVE-2026-27727 json | mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations of JNDI functi... | Not Provided | 2026-02-25 | 2026-07-02 |
| CVE-2019-5427 json | c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections ... | 7.5 - HIGH | 2019-04-22 | 2023-11-07 |
| CVE-2018-20433 json | c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initiali... | 9.8 - CRITICAL | 2018-12-24 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mchange | C3p0 | 0.9.5.4 | |||
| Application | Mchange | C3p0 | 0.9.5.3 | |||
| Application | Mchange | C3p0 | 0.9.5.2 | |||
| Application | Mchange | C3p0 | 0.9.5.1 | |||
| Application | Mchange | C3p0 | 0.9.5 | |||
| Application | Mchange | C3p0 | 0.9.2.1 | |||
| Application | Mchange | C3p0 | 0.9.2 | |||
| Application | Mchange | C3p0 | 0.9.1.2 | |||
| Application | Mchange | C3p0 | 0.9.1.1 | |||
| Application | Mchange | C3p0 | 0.9.1 | |||
| Application | Mchange | C3p0 | 0.9.0.4 | |||
| Application | Mchange | C3p0 | 0.9.0.3 | |||
| Application | Mchange | C3p0 | 0.9.0.2 | |||
| Application | Mchange | C3p0 | 0.9.0 | |||
| Application | Mchange | C3p0 | 0.8.5.2 | |||
| Application | Mchange | C3p0 | 0.8.5.1 | |||
| Application | Mchange | C3p0 | 0.8.5 | |||
| Application | Mchange | C3p0 | 0.8.4.5 | |||
| Application | Mchange | C3p0 | 0.8.4.2 | |||
| Application | Mchange | C3p0 | 0.8.4.1 |