This is sort of a PSA, but more of an amusing response to a CVE from the folks at H2:
To save you a click:
NOTE: the vendor states "This is not a vulnerability of H2 Console ... Passwords should never be passed on the command line and every qualified DBA or system administrator is expected to know that."