Vulnerabilities > Hibernate

DATE CVE VULNERABILITY TITLE RISK
2020-12-02 CVE-2020-25638 SQL Injection vulnerability in multiple products
A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final.
network
high complexity
hibernate debian quarkus oracle CWE-89
7.4
7.4
2020-07-06 CVE-2019-14900 SQL Injection vulnerability in multiple products
A flaw was found in Hibernate ORM in versions before 5.3.18, 5.4.18 and 5.5.0.Beta1.
network
low complexity
hibernate redhat quarkus CWE-89
6.5
6.5