Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-21000HistoryApr 16, 2024 - 10:15 p.m.
CVE-2024-21000
2024-04-1622:15:13
Debian Security Bug Tracker
security-tracker.debian.org
5
mysql server
oracle
vulnerability
unauthorized access
data compromise
network access
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data as well as unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 999 | all | mysql-8.0 | < 8.0.37-1 | mysql-8.0_8.0.37-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2024-21000
2024-04-16 00:00:00
cnvd
cnvd
Unspecified Vulnerability in Oracle MySQL (CNVD-2024-20436)
2024-04-18 00:00:00
cvelist
cvelist
CVE-2024-21000
2024-04-16 21:25:57
cve
cve
CVE-2024-21000
2024-04-16 22:15:13
redhatcve
redhatcve
CVE-2024-21000
2024-04-23 09:05:34
f5
f5
K000139668: MySQL Server vulnerabilities CVE-2024-21000 and CVE-2024-21008
2024-05-17 00:00:00
nessus
nessus
Oracle MySQL Server 8.0.x < 8.0.37 (April 2024 CPU)
2024-04-19 00:00:00
Oracle MySQL Server 8.x < 8.4.0 (April 2024 CPU)
2024-04-19 00:00:00
openvas
openvas
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
5.5 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
13.7%
Related for DEBIANCVE:CVE-2024-21000