The vulnerability of the Connector/Python driver for MySQL Connectors in the Oracle MySQL database management system allows a hacker to gain unauthorized access to read, add, modify, and delete data, or to cause a service failure.

🗓️ 01 Nov 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 2 Views

Vulnerability in Connector/Python for MySQL allows unauthorized access and data manipulation.

Reporter	Title	Published	Views	Family All 18
Circl	CVE-2024-21170	19 Mar 202514:16	–	circl
CNNVD	Oracle MySQL 安全漏洞	16 Jul 202400:00	–	cnnvd
CNVD	Unspecified Vulnerability in Oracle MySQL Connectors (CNVD-2024-34919)	17 Jul 202400:00	–	cnvd
CVE	CVE-2024-21170	16 Jul 202422:40	–	cve
Cvelist	CVE-2024-21170	16 Jul 202422:40	–	cvelist
Debian CVE	CVE-2024-21170	16 Jul 202422:40	–	debiancve
EUVD	EUVD-2024-18884	3 Oct 202520:07	–	euvd
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by vulnerabilities in Oracle MySQL	19 Jun 202505:35	–	ibm
NCSC	Vulnerabilities fixed in Oracle MySQL	17 Jul 202413:54	–	ncsc
NVD	CVE-2024-21170	16 Jul 202423:15	–	nvd

Vulners

Node

oracle mysql_connectorsRange≤8.4.0

Source	Link
oracle	www.oracle.com/security-alerts/cpujul2024.html
vuldb	www.vuldb.com/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB20240718167
web	www.web.nvd.nist.gov/view/vuln/detail

01 Nov 2024 00:00Current

7.3High risk

Vulners AI Score7.3

CVSS 36.3

CVSS 26.5

EPSS0.0013

mysql connector python input validation gaps unauthorized access data manipulation