CVE-2010-2232

In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export processing may allow an attacker to overwrite an existing file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
apacheCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
VendorProductVersion
apachederby
10.1.2.1
apachederby
10.2.2.0
apachederby
10.3.1.4
apachederby
10.4.1.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
derby
bookworm
10.14.2.0-2
fixed
bullseye
10.14.2.0-2
fixed
sid
10.14.2.0-3
fixed
trixie
10.14.2.0-3
fixed
Common Weakness Enumeration
References
http://db.apache.org/derby/releases/release-10.6.2.1.html#Note+for+DERBY-2925
http://www.securityfocus.com/bid/101562
https://issues.apache.org/jira/browse/DERBY-2925
http://db.apache.org/derby/releases/release-10.6.2.1.html#Note+for+DERBY-2925
http://www.securityfocus.com/bid/101562
https://issues.apache.org/jira/browse/DERBY-2925