Hi Marcus, > The package com.h2database:h2 from 1.4.198 and before 2.0.202 are vulnerable to XML
Ignite uses version 1.4.197, so Ignite isn't impacted by this CVE. Maksim On Mon, Feb 21, 2022 at 10:16 AM Lo, Marcus <marcus...@citi.com> wrote: > Hi, > > > > Is Ignite impacted by h2 vulnerability CVE-2021-23463? Thanks. > > > > https://nvd.nist.gov/vuln/detail/CVE-2021-23463 > > > > Regards, > > Marcus > > >
