A SQL injection in the Amazon Redshift JDBC Driver in v2.1.0.31 allows a user to gain escalated privileges via the getSchemas, getTables, or getColumns Metadata APIs. Users should upgrade to the driver version 2.1.0.32 or revert to driver version 2.1.0.30.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| com.amazon.redshift:redshift-jdbc42(Maven) | 2.1.0.31 | 2.1.0.32 | N/A |
CVSS Metrics
