Swaldman C3p0
2 CVEs affecting Swaldman C3p0. Latest disclosed: 2026-06-30. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-27830 | High | 8.0 | 2026-02-26 | c3p0, a JDBC Connection pooling library, is vulnerable to attack via maliciously crafted Java-serialized objects and `javax.naming.Reference` instances. Severa… |
CVE-2026-55223 | | 2026-06-30 | c3p0 is a JDBC Connection pooling library. In versions prior to 0.14.0, c3p0 in combination with other libraries, can compose to a "sink" for deserialization… |