Log4Shell-like security hole found in popular Java SQL database engine H2

By Paul Ducklin — January 7^th 2022 at 19:32

"It's Log4Shell, Jim, but not as we know it." How to find and fix a JNDI-based vuln in the H2 Database Engine.