Lucene search

[email protected]CVE-2002-1921

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-1921

2022-10-0316:23:49

[email protected]

web.nvd.nist.gov

mysql

windows

cve-2002-1921

security vulnerability

database

remote attack

6.7 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.7%

JSON

The default configuration of MySQL 3.20.32 through 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote attackers to connect to the database.

Affected configurations

NVD

Node

oraclemysqlMatch3.20.32a

oraclemysqlMatch3.22.26

oraclemysqlMatch3.22.27

oraclemysqlMatch3.22.28

oraclemysqlMatch3.22.29

oraclemysqlMatch3.22.30

oraclemysqlMatch3.22.32

oraclemysqlMatch3.23.2

oraclemysqlMatch3.23.3

oraclemysqlMatch3.23.4

oraclemysqlMatch3.23.5

oraclemysqlMatch3.23.8

oraclemysqlMatch3.23.9

oraclemysqlMatch3.23.10

oraclemysqlMatch3.23.23

oraclemysqlMatch3.23.24

oraclemysqlMatch3.23.25

oraclemysqlMatch3.23.26

oraclemysqlMatch3.23.27

oraclemysqlMatch3.23.28

oraclemysqlMatch3.23.28gamma

oraclemysqlMatch3.23.29

oraclemysqlMatch3.23.30

oraclemysqlMatch3.23.31

oraclemysqlMatch3.23.34

oraclemysqlMatch3.23.36

oraclemysqlMatch3.23.37

oraclemysqlMatch3.23.38

oraclemysqlMatch3.23.39

oraclemysqlMatch3.23.40

oraclemysqlMatch3.23.41

oraclemysqlMatch3.23.42

oraclemysqlMatch3.23.43

oraclemysqlMatch3.23.44

oraclemysqlMatch3.23.45

oraclemysqlMatch3.23.46

oraclemysqlMatch3.23.47

oraclemysqlMatch3.23.48

oraclemysqlMatch3.23.49

oraclemysqlMatch3.23.50

oraclemysqlMatch3.23.51

oraclemysqlMatch3.23.52

CPENameOperatorVersion
oracle:mysqloracle mysqleq3.20.32a
oracle:mysqloracle mysqleq3.22.26
oracle:mysqloracle mysqleq3.22.27
oracle:mysqloracle mysqleq3.22.28
oracle:mysqloracle mysqleq3.22.29
oracle:mysqloracle mysqleq3.22.30
oracle:mysqloracle mysqleq3.22.32
oracle:mysqloracle mysqleq3.23.2
oracle:mysqloracle mysqleq3.23.3
oracle:mysqloracle mysqleq3.23.4

CPE	Name	Operator	Version
oracle:mysql	oracle mysql	eq	3.20.32a
oracle:mysql	oracle mysql	eq	3.22.26
oracle:mysql	oracle mysql	eq	3.22.27
oracle:mysql	oracle mysql	eq	3.22.28
oracle:mysql	oracle mysql	eq	3.22.29
oracle:mysql	oracle mysql	eq	3.22.30
oracle:mysql	oracle mysql	eq	3.22.32
oracle:mysql	oracle mysql	eq	3.23.2
oracle:mysql	oracle mysql	eq	3.23.3
oracle:mysql	oracle mysql	eq	3.23.4

Rows per page:

1-10 of 411

References

online.securityfocus.com/archive/1/288105

www.iss.net/security_center/static/9908.php

www.securityfocus.com/bid/5511

6.7 Medium

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.005 Low

EPSS

Percentile

76.7%

JSON

Related for CVE-2002-1921

cvelist1 nvd1 nessus1