Lucene search

K
freebsdFreeBSD38A4A043-E937-11EB-9B84-D4C9EF517024
HistoryJul 20, 2021 - 12:00 a.m.

MySQL -- Multiple vulnerabilities

2021-07-2000:00:00
vuxml.freebsd.org
59
oracle mysql
security patches
remotely exploitable
authentication
network
user credentials
cvss v3.1
base score
mariadb
cve-2021-2372
cve-2021-2389
vulnerabilities.

CVSS2

8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:P/I:P/A:C

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.319

Percentile

97.1%

Oracle reports:

This Critical Patch Update contains 41 new security patches for
Oracle MySQL. 10 of these vulnerabilities may be remotely exploitable
without authentication, i.e., may be exploited over a network without
requiring user credentials.
The highest CVSS v3.1 Base Score of vulnerabilities affecting Oracle
MySQL is 8.8.
MariaDB is affected by CVE-2021-2372 and CVE-2021-2389 only.

Affected configurations

Vulners
Node
mysqlmysql_serverRange<5.7.35
OR
mysqlmysql_serverRange<8.0.26
OR
mariadbserverRange<10.3.31
OR
mariadbserverRange<10.4.21
OR
mariadbserverRange<10.5.12
VendorProductVersionCPE
mysqlmysql_server*cpe:2.3:a:mysql:mysql_server:*:*:*:*:*:*:*:*
mariadbserver*cpe:2.3:a:mariadb:server:*:*:*:*:*:*:*:*

CVSS2

8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:P/I:P/A:C

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.319

Percentile

97.1%