漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Apache Derby before 10.2.1.6 does not determine schema privilege requirements during the DropSchemaNode bind phase, which allows remote authenticated users to execute arbitrary drop schema statements in SQL authorization mode.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache Derby 远程验证漏洞
Vulnerability Description
Apache Derby 10.2.1.6版本之前的版本在DropSchemaNode受限制的阶段没有确定计划特权请求,这会允许远程验证用户执行SQL认证模式中的任意drop计划陈述。
CVSS Information
N/A
Vulnerability Type
N/A