Researchers have disclosed a security flaw affecting H2 database consoles that could result in remote code execution. The flaw echoes the Log4j “Log4Shell” vulnerability that came to light last month. H2 is an open-source relational database management system written in Java that can be embedded within applications or run in client-server mode. The issue, tracked as CVE-2021-42392, is the “first critical issue published since Log4Shell, on a component other than log4j””]
Source: https://thehackernews.com/2022/01/log4shell-like-critical-rce-flaw.html

