CVE-2022-21319

🗓️ 19 Jan 2022 11:24:21Reported by oracleType

Vulnerability in Oracle MySQL (Cluster: General) allows unauthorized read access & partial DOS

Reporter	Title	Published	Views	Family All 214
ATTACKERKB	CVE-2022-21319	19 Jan 202212:15	–	attackerkb
BDU FSTEC	Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain unauthorized access to protected information or cause service failures.	30 Mar 202200:00	–	bdu_fstec
CBLMariner	CVE-2022-21319 affecting package mysql 8.0.27-2	8 Feb 202203:14	–	cbl_mariner
CBLMariner	CVE-2022-21319 affecting package mysql for versions less than 8.0.28-1	9 Apr 202206:53	–	cbl_mariner
Chainguard	CVE-2022-21319 vulnerabilities	19 Jan 202212:15	–	cgr
Circl	CVE-2022-21319	15 Nov 202317:01	–	circl
CNNVD	Oracle MySQL 缓冲区错误漏洞	18 Jan 202200:00	–	cnnvd
CNVD	Oracle MySQL Cluster Information Disclosure Vulnerability (CNVD-2022-18210)	25 Jan 202200:00	–	cnvd
Cvelist	CVE-2022-21319	19 Jan 202211:24	–	cvelist
EUVD	EUVD-2022-26544	3 Oct 202520:07	–	euvd

NVD

Vulners

Node

oracle mysqlRange7.4.0–7.4.34

oracle mysqlRange7.5.0–7.5.24

oracle mysqlRange7.6.0–7.6.20

oracle mysqlRange8.0.0–8.0.27

Node

netapp oncommand_insightMatch-

netapp oncommand_workflow_automationMatch-

[
  {
    "product": "MySQL Cluster",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "7.4.34 and prior"
      },
      {
        "status": "affected",
        "version": "7.5.24 and prior"
      },
      {
        "status": "affected",
        "version": "7.6.20 and prior"
      },
      {
        "status": "affected",
        "version": "8.0.27 and prior"
      }
    ]
  }
]

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-22-104/
oracle	www.oracle.com/security-alerts/cpujan2022.html
security	www.security.netapp.com/advisory/ntap-20220121-0008/

17 Jun 2026 04:26Current

2.2Low risk

Vulners AI Score2.2

CVSS 22.9

CVSS 3.12.9

EPSS0.01386

SSVC