Vulnerabilities > CVE-2006-7216 - Remote Security vulnerability in Apache Derby 10.1.1.0/10.1.2.1/10.1.3.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Apache Derby before 10.2.1.6 does not determine privilege requirements for lock table statements at compilation time, and consequently does not enforce privilege requirements at execution time, which allows remote authenticated users to lock arbitrary tables.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |