A vulnerability was found in Folio Spring Module Core up to 1.1.5. It has been rated as critical. Affected by this issue is the function dropSchema of the file tenant/src/main/java/org/folio/spring/tenant/hibernate/HibernateSchemaService.java of the component Schema Name Handler. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2022-4963. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.