CVE-2026-0603 – Hibernate security issue: Should you be worried?

CVE-2026-0603: Second-Order SQL Injection in Hibernate ORM – Risk Assessment Abstract CVE-2026-0603, disclosed on January 19, 2026, describes a high-severity (CVSS 8.3) second-order SQL injection vulnerability in Hibernate ORM’s InlineIdsOrClauseBuil...