Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.1.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Connectors attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.1 Base Score 8.3 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H).

🗓️ 20 Oct 2023 07:00:00Reported by MicrosoftType 
mscve
 mscve🔗 msrc.microsoft.com👁 1 Views

Oracle MySQL Connector/J vulnerability affects MySQL Connectors up to 8.1.0; unauthenticated access may take over.

Related
Detection
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Multiple Vulnerabilities in IBM Edge Application Manager
20 Aug 202503:21
ibm
IBM Security Bulletins		Security Bulletin: Vulnerabilities in Eran Hammer cryptiles, PostCSS,Node.js,node-notifier,es5-ext ,MySQL Connectors,json-path and tough-cookie might affect IBM Storage Defender Copy Data Management
12 Dec 202515:25
ibm
IBM Security Bulletins		Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Oracle MySQL Connectors (CVE-2023-22102)
28 Jun 202422:54
ibm
IBM Security Bulletins		Security Bulletin: IBM Event Processing is vulnerable to high confidentiality, integrity and availability impacts (CVE-2023-22102).
25 Apr 202405:24
ibm
IBM Security Bulletins		Security Bulletin: Vulnerability in Oracle MySQL Connectors Affects IBM watsonx.data
25 Sep 202418:52
ibm
FreeBSD		MySQL -- Multiple vulnerabilities
17 Oct 202300:00
freebsd
CBLMariner		CVE-2023-22102 affecting package mysql for versions less than 8.0.34-1
17 Nov 202323:23
cbl_mariner
Chainguard		CVE-2023-22102 vulnerabilities
7 Jan 202601:29
cgr
Circl		CVE-2023-22102
7 Feb 202415:46
circl
CNNVD		Oracle MySQL Security Vulnerabilities
17 Oct 202300:00
cnnvd
Rows per page
Vulners
Node
microsoftcbl2_mysql_8.0.34-1Range<8.0.34-1

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
20 Oct 2023 07:00Current
7High risk
Vulners AI Score7
CVSS 3.18.3
EPSS0.03493
SSVC
MySQL ConnectorsMySQL Connector/JUnauthenticated access
1