← back
CVE-2020-13921

CVE-2020-13921

EPSS 33.5%
**Resolved** Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there is a SQL injection vulnerability in the wildcard query cases.
Affected products
n/a · Apache SkyWalking

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/apache/skywalking/pull/4970https://lists.apache.org/thread.html/r6f3a934ebc54585d8468151a494c1919dc1ee2cccaf237ec434dbbd6%40%3Cdev.skywalking.apache.org%3Ehttp://www.openwall.com/lists/oss-security/2020/08/05/3