Lucene search

K
freebsdFreeBSD22DF5074-71CD-11EE-85EB-84A93843EB75
HistoryOct 17, 2023 - 12:00 a.m.

MySQL -- Multiple vulnerabilities

2023-10-1700:00:00
vuxml.freebsd.org
28
oracle
critical patch update
mysql
security patches
remote exploitable
vulnerabilities

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

75.0%

Oracle reports:

This Critical Patch Update contains 37 new security patches, plus
additional third party patches noted below, for Oracle MySQL. 9 of
these vulnerabilities may be remotely exploitable without
authentication, i.e., may be exploited over a network without
requiring user credentials.

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.004

Percentile

75.0%