15241 matches found
mysql: InnoDB unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
mysql: Client programs unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Client programs. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to...
mysql: DML unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...
mysql: Optimizer unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...
mysql: DDL unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...
mysql: X Plugin unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: X Plugin. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
mysql: InnoDB unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...
mysql: PS unspecified vulnerability (CPU Oct 2024)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: PS. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromis...
mysql: MySQL Server: Denial of Service via network access
A flaw was found in MySQL Server. This vulnerability allows unauthorized remote attacker to cause a denial of service DoS...
mysql: MySQL Server: Unauthorized Data Modification and Read Access Vulnerability
A flaw was found in MySQL Server. This vulnerability allows a low privileged attacker with network access via multiple protocols to achieve unauthorized data modification and read access to a subset of MySQL Server's accessible data...
mysql: MySQL Server: Denial of Service (DoS) via network access by a high privileged attacker
A flaw was found in MySQL Server. This vulnerability allows a high privileged attacker with network access via multiple protocols to cause a hang or frequently repeatable crash complete Denial of Service DoS...
mysql: MySQL Server: Denial of service in Thread Pooling component
A flaw was found in MySQL Server Thread Pooling component. This vulnerability allows a denial of service DoS via network access through multiple protocols by an unauthenticated attacker...
mysql: MySQL Server Options Vulnerability
A flaw was found in MySQL Server component: Options. This issue may allow unauthorized read access to a subset of MySQL Server data via a high-privileged attacker with logon to the infrastructure and requires human interaction from another user...
mysql: Optimizer unspecified vulnerability (CPU Jan 2025)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
mysql: Privilege Misuse in MySQL Server Security Component
A flaw was found in MySQL Server component: Security: Privileges. This issue can allow unauthorized update, insert, or delete access to MySQL Server data and unauthorized read access to a subset of data via multiple protocols...
mysql: MySQL Server: Denial of Service vulnerability
A flaw was found in MySQL Server. This vulnerability allows a low privileged attacker to cause a complete Denial of Service DoS via network access using multiple protocols...
mysql: Parser unspecified vulnerability (CPU Jan 2025)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...
RHEL 9 : mysql (RHSA-2025:1671)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:1671 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...
MariaDB 11.7.0 < 11.7.2
The version of MariaDB installed on the remote host is prior to 11.7.2. It is, therefore, affected by a vulnerability as referenced in the 11.7.2 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.40 and prior, 8.4...
Parameter Injection
github.com/clidey/whodb/core is vulnerable to Parameter Injection. The vulnerability is due to unsafe string concatenation due to improper handling of user input in database connection URIs, allowing an attacker to inject parameters like allowAllFiles=true and read local files thr ugh the LOAD DA...