Oracle MySQL Cluster 输入验证错误漏洞

MySQL Cluster is a write-scalable, real-time, ACID-compatible transactional database. A security vulnerability exists in the Cluster: JS module component in Oracle MySQL Cluster 8.0.25 and earlier. An attacker can exploit this vulnerability to cause a denial of service...

PT-2021-6669 · Oracle +1 · Mysql Cluster +1

Name of the Vulnerable Software and Affected Versions: MySQL Cluster versions 7.4.34 and prior MySQL Cluster versions 7.5.24 and prior MySQL Cluster versions 7.6.20 and prior MySQL Cluster versions 8.0.27 and prior Description: The issue is related to a buffer overflow in memory, allowing a remot...

Vulnerability of the NDBCluster Plugin of the MySQL Cluster database management system: This plugin allows attackers to modify, add, or delete data, or to cause service interruptions.

Vulnerability of the NDBCluster Plugin of the MySQL Cluster database management system: Insufficient validation of input data is a concern. Exploiting this vulnerability can allow an attacker to modify, add, or delete data, or cause service interruptions...

Vulnerability of the Cluster component: The JS module (Node.js) of the Oracle MySQL Cluster database management system, which allows a hacker to execute arbitrary code.

Vulnerability of the Cluster component: The JS module Node.js of the Oracle MySQL Cluster database management system is vulnerable due to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

Oracle MySQL Cluster Cluster NDBCluster Plugin Denial of Service Vulnerability

Oracle MySQL Cluster is a highly practical and redundant version of Oracle's MySQL for distributed computing environments. Oracle MySQL Cluster Cluster: A denial of service vulnerability exists in NDBCluster Plugin 8.0.21 and prior versions that could allow an attacker to compromise a MySQL clust...

CVE-2020-14853

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: NDBCluster Plugin. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster...

UBUNTU-CVE-2020-14853

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: NDBCluster Plugin. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster...

CVE-2020-14853

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: NDBCluster Plugin. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster...

Vulnerabilities fixed in Oracle MySQL

Oracle has fixed vulnerabilities in the following Oracle MySQL products: MySQL Workbench MySQL Server MySQL Cluster MySQL Enterprise Monitor The vulnerabilities allow a malicious person, whether or not unauthenticated and remote, potentially be able to launch attacks that result in the following...

Vulnerability of the Cluster component: Packaging (dojo) of the Oracle MySQL Cluster database management system, which allows attackers to compromise data integrity.

The vulnerability of the Cluster: Packaging dojo component of the Oracle MySQL Cluster database management system exists due to the failure to take measures to neutralize specific elements. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity ...

Vulnerability of the Cluster component: The general database management system of Oracle MySQL Cluster, which allows attackers to trigger service interruptions.

Vulnerability of the Cluster component: The general system management for Oracle databases and MySQL Cluster is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using various network protocols...

Unspecified Vulnerability in Oracle MySQL Cluster (CNVD-2020-29572)

Oracle MySQL is an open source relational database management system from Oracle. A security vulnerability exists in the Cluster: General component of MySQL Cluster in Oracle MySQL. An attacker can exploit this vulnerability to cause a denial of service hangs or frequent crashes and unauthorized...

CVE-2020-2768

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

Code injection

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

CVE-2020-2768

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

Vulnerabilities fixed in Oracle MySQL products

Oracle has fixed vulnerabilities in its MySQL products: - MySQL Server - MySQL Workbench - MySQL Enterprise Monitor - MySQL Cluster - MySQL Client - MySQL Connectors One of these vulnerabilities CVE-2019-5482 concerns an erng serious vulnerability in MySQL Server. This vulnerability allows an...

MySQL Cluster 7.2.x < 7.2.33 / 7.3.x < 7.3.21 / 7.4.x < 7.4.19 / 7.5.x < 7.5.10 Denial of Service Vulnerability

The version of MySQL Cluster running on the remote host is 7.2.x prior to 7.2.33, 7.3.x prior to 7.3.21, 7.4.x prior to 7.4.19 or 7.5.x prior to 7.5.10. It is, therefore, affected by a denial of service vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster:...

CVE-2018-2877

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

Code injection

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

CVE-2018-2877

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...