CVE-2022-45868

EUVD-2022-7189
The web-based admin console in H2 Database Engine before 2.2.220 can be started via the CLI with the argument -webAdminPassword, which allows the user to specify the password in cleartext for the web admin console. Consequently, a local user (or an attacker that has obtained local access through some means) would be able to discover the password by listing processes and their arguments. NOTE: the vendor states "This is not a vulnerability of H2 Console ... Passwords should never be passed on the command line and every qualified DBA or system administrator is expected to know that." Nonetheless, the issue was fixed in 2.2.220.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.4 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
8.4 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:N/S:U/UI:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
h2databaseh2
𝑥
≤ 2.1.214
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
h2database
bookworm
unimportant
bullseye
unimportant
bullseye (security)
unimportant
sid
unimportant
trixie
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
h2database
bionic
not-affected
focal
not-affected
jammy
not-affected
kinetic
ignored
lunar
ignored
mantic
ignored
noble
not-affected
trusty
ignored
xenial
not-affected
jameica-h2database
bionic
dne
focal
dne
jammy
dne
kinetic
not-affected
lunar
not-affected
mantic
not-affected
noble
not-affected
trusty
ignored
xenial
ignored
mediathekview
bionic
not-affected
focal
not-affected
jammy
not-affected
kinetic
not-affected
lunar
not-affected
mantic
not-affected
noble
not-affected
trusty
ignored
xenial
not-affected
Common Weakness Enumeration
References
https://github.com/advisories/GHSA-22wj-vf5f-wrvj
https://github.com/h2database/h2database/blob/96832bf5a97cdc0adc1f2066ed61c54990d66ab5/h2/src/main/org/h2/server/web/WebServer.java#L346-L347
https://github.com/h2database/h2database/issues/3686
https://github.com/h2database/h2database/pull/3833
https://github.com/h2database/h2database/releases/tag/version-2.2.220
https://sites.google.com/sonatype.com/vulnerabilities/sonatype-2022-6243
https://github.com/advisories/GHSA-22wj-vf5f-wrvj
https://github.com/h2database/h2database/blob/96832bf5a97cdc0adc1f2066ed61c54990d66ab5/h2/src/main/org/h2/server/web/WebServer.java#L346-L347
https://github.com/h2database/h2database/issues/3686
https://github.com/h2database/h2database/pull/3833
https://github.com/h2database/h2database/releases/tag/version-2.2.220
https://sites.google.com/sonatype.com/vulnerabilities/sonatype-2022-6243