Homepage

com.h2database:h2 vulnerabilities

Licenses: (EPL-1.0 OR MPL-2.0) | (MPL-2.0 OR EPL-1.0) | H2-Database-1.0 | (MPL-2.0 AND EPL-1.0)
Published: 18 years ago Last updated: 2 months ago Latest version: 2.4.240 Latest non-vulnerable version: 2.4.240

License

(EPL-1.0 OR MPL-2.0)[2.0.202,);
(MPL-2.0 OR EPL-1.0)[1.4.192,2.0.202);
H2-Database-1.0[1.0.57,1.4.179);
(MPL-2.0 AND EPL-1.0)[1.4.179,1.4.192);
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the com.h2database:h2 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Information Exposure

[1.4.198,2.2.220)
  • L
Insecure Permissions

[1.1.100,1.4.198)
  • C
Remote Code Execution (RCE)

[,2.1.210)
  • H
Remote Code Execution (RCE)

[1.1.100,2.0.206)
  • H
XML External Entity (XXE) Injection

[1.4.198,2.0.202)

Package versions

140 VERSIONS IN TOTAL See all versions
versionpublisheddirect vulnerabilities
2.4.24024 Sep, 2025
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.3.23212 Aug, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.3.23015 Jul, 2024
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.2.22418 Sep, 2023
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.2.2221 Sep, 2023
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.2.2205 Jul, 2023
  • 0
    C
  • 0
    H
  • 0
    M
  • 0
    L
2.1.21414 Jun, 2022
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
2.1.2129 Apr, 2022
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
2.1.21017 Jan, 2022
  • 0
    C
  • 0
    H
  • 1
    M
  • 0
    L
2.0.2064 Jan, 2022
  • 1
    C
  • 0
    H
  • 1
    M
  • 0
    L