You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is there a plan to upgrade to version h2 or other evasion methods, as there is a remote execution vulnerability (CVE-2021-42392) in the latest version of gnite (2.16.0) using h2 (1.4.197)?
The text was updated successfully, but these errors were encountered:
The actual vulnerability in this version of H2 is actually in the web console that Ignite disables by default but this fact won't help you with Blackduck and Synk scans. If this is your issue, then exclude the H2 library from the Ignite package if you're not using the SQL features, or switch to the Calcite engine if you are.
Is there a plan to upgrade to version h2 or other evasion methods, as there is a remote execution vulnerability (CVE-2021-42392) in the latest version of gnite (2.16.0) using h2 (1.4.197)?
The text was updated successfully, but these errors were encountered: