PT-2023-28144 · Unknown +2 · Mysql Connector/J +4

Name of the Vulnerable Software and Affected Versions: OpenRefine versions prior to 3.7.5 Description: A remote code execution issue allows any unauthenticated user to execute code on the server. This is possible due to a vulnerability in the way OpenRefine handles certain database connections,...

SUSE: Security Advisory (SUSE-SU-2023:3187-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2023:3187-1 Security update for javapackages-tools, javassist, mysql-connector-java, protobuf, python-python-gflags

This update for javapackages-tools, javassist, mysql-connector-java, protobuf, python-python-gflags contains the following fixes: Changes in mysql-connector-java: - Restrict license to GPL-2.0-only - Fix README adjustments - Depend on log4j rather than log4j-mini and adjust log4j dependencies to...

openSUSE 15 Security Update : mysql-connector-java (SUSE-SU-2023:2979-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:2979-1 advisory. - Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.32 and prior. Difficult ...

openSUSE 15 Security Update : mysql-connector-java (SUSE-SU-2023:2241-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:2241-1 advisory. - Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.32 and prior. Difficult ...

Amazon Linux 2 : mysql-connector-java (ALAS-2023-2017)

The version of mysql-connector-java installed on the remote host is prior to 5.1.25-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2017 advisory. Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are...

Debian: Security Advisory (DLA-526-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2019-12086

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9. When Default Typing is enabled either globally or for a specific property for an externally exposed JSON endpoint, the service has the mysql-connector-java jar 8.0.14 or earlier in the classpath, and an...

SUSE CVE-2020-2875

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.14 and prior and 5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL...

SUSE CVE-2020-2933

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 5.1.48 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

SUSE CVE-2021-2471

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

Important: Red Hat Security Advisory: Red Hat Fuse 7.11.0 release and security update

A minor version update from 7.10 to 7.11 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scorin...

mysql-connector-java: Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

ai.hyacinth.framework:core-service-jpa-support (>=0.5.0 <=0.5.24), ai.hyacinth.framework:core-service-trigger-server (>=0.5.0 <=0.5.24) +3398 more potentially affected by CVE-2021-2471 via mysql:mysql-connector-java (>=8.0.11 <=8.0.26)

mysql:mysql-connector-java MAVEN version =8.0.11, =0.5.0, =0.5.0, =4.2.6, =j8.2.2.0, =Greenwich.SR1, =0.1.0, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210127.1838-76ab4fc, =0.1.3-20210805.0116-93702c4, =0.1.0, =2023.06.07.114626-93b9d6f, =0.1.0, =0.1.4-20220614.0152-5ae0eef, =2023.11.24.141218-03579...

GHSA-W6F2-8WX4-47R5 Incorrect Authorization in MySQL Connector Java

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +1682 more potentially affected by CVE-2015-2575 via mysql:mysql-connector-java (>=3.0.10 <=5.1.34)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.1, =0.2.0, =0.2.0, =0.1.0, =0.3.0, =0.1.0, =1.0, =0.1, =0.4.1 and more Source cves: CVE-2015-2575 Source advisory: OSV:GHSA-GC43-G62C-99G2...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +4210 more potentially affected by CVE-2018-3258 via mysql:mysql-connector-java (>=3.0.10 <=8.0.12)

mysql:mysql-connector-java MAVEN version =3.0.10, =0.1.0, =4.1.3, =0.0.13, =1.13.3, =Finchley.SR2.SR1, =1.0.0, =0.0.3, =1.1.5.RELEASE, =1.0.1, =1.1.0 and more Source cves: CVE-2018-3258 Source advisory: OSV:GHSA-4VRV-CH96-6H42...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2426 more potentially affected by CVE-2017-3589 via mysql:mysql-connector-java (>=3.0.10 <=5.1.41)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3589 Source advisory: OSV:GHSA-CJCF-WM2P-59H5...

GHSA-PWH7-92H3-MQR6 Exposure of Sensitive Information to an Unauthorized Actor in Oracle MySQL Connectors Java

Vulnerability in the MySQL Connectors component of Oracle MySQL subcomponent: Connector/J. Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Whil...

ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2426 more potentially affected by CVE-2017-3586 via mysql:mysql-connector-java (>=3.0.10 <=5.1.41)

mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3586 Source advisory: OSV:GHSA-PWH7-92H3-MQR6...