Vulnerabilities > Orientdb > Orientdb > 2.2.20
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-20 | CVE-2017-11467 | Improper Privilege Management vulnerability in Orientdb OrientDB through 2.2.22 does not enforce privilege requirements during "where" or "fetchplan" or "order by" use, which allows remote attackers to execute arbitrary OS commands via a crafted request. | 9.8 |