CNNVD-202601-3031 Information

CNNVD ID

CNNVD-202601-3031

Related CVE

CVE-2026-0603

• CNNVD Published: 2026-01-19

Description (Chinese)

Hibernate是Hibernate公司的一个对象关系映射框架。 Hibernate存在安全漏洞，该漏洞源于二阶SQL注入，可能导致信息泄露和数据删除。

Description (English)

Hibernate is an object mapping framework for Hibernate. Hibernate has a security loophole, which originates from a second-stage SQL injection, which can lead to information leaks and data deletions.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Hibernate

Published

2026-01-19

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2026-0603 https://bugzilla.redhat.com/show_bug.cgi?id=2427147 https://access.redhat.com/security/cve/cve-2026-0603