CVE-2024-12744 | Amazon Redshift JDBC Driver 2.1.0.31 Metadata API getSchemas/getTables/getColumns sql injection

Posted by Angelo Barbosa | Dec 24, 2024 | CVE

A vulnerability was found in Amazon Redshift JDBC Driver 2.1.0.31 and classified as critical. This issue affects the function getSchemas/getTables/getColumns of the component Metadata API. The manipulation leads to sql injection.

The identification of this vulnerability is CVE-2024-12744. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12744 | Amazon Redshift JDBC Driver 2.1.0.31 Metadata API getSchemas/getTables/getColumns sql injection

Related Posts

CVE-2024-9917 | HuangDou UTCMS V9 template_creat.php content deserialization

CVE-2024-2784 | Plus Addons for Elementor Plugin up to 5.5.4 on WordPress Hover Card cross site scripting

CVE-2024-2753 | Concrete CMS up to 8.5.15/9.2.7 Calendar Color Settings Screen cross site scripting

CVE-2024-56232 | Alexander Volkov WP Nice Loader Plugin up to 0.1.0.4 on WordPress cross-site request forgery