Lucene search
K

314 matches found

Positive Technologies
Positive Technologies
added 2023/09/12 12:0 a.m.4 views

PT-2023-28144 · Unknown +2 · Mysql Connector/J +4

Name of the Vulnerable Software and Affected Versions: OpenRefine versions prior to 3.7.5 Description: A remote code execution issue allows any unauthenticated user to execute code on the server. This is possible due to a vulnerability in the way OpenRefine handles certain database connections,...

9.8CVSS8.1AI score0.45473EPSS
Exploits8References41
Positive Technologies
Positive Technologies
added 2023/09/12 12:0 a.m.2 views

PT-2023-28143 · Unknown +2 · Mysql Connector/J +3

Name of the Vulnerable Software and Affected Versions: OpenRefine versions prior to 3.7.5 Description: An arbitrary file read issue allows any unauthenticated user to read a file on a server. This is related to the use of the MySQL JDBC connector, where an attacker can exploit the...

9.8CVSS6.8AI score0.45473EPSS
Exploits8References42
OpenVAS
OpenVAS
added 2023/08/07 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2023:3187-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References12
OSV
OSV
added 2023/08/03 8:31 p.m.3 views

SUSE-SU-2023:3187-1 Security update for javapackages-tools, javassist, mysql-connector-java, protobuf, python-python-gflags

This update for javapackages-tools, javassist, mysql-connector-java, protobuf, python-python-gflags contains the following fixes: Changes in mysql-connector-java: - Restrict license to GPL-2.0-only - Fix README adjustments - Depend on log4j rather than log4j-mini and adjust log4j dependencies to...

7.7AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/07/27 12:0 a.m.29 views

openSUSE 15 Security Update : mysql-connector-java (SUSE-SU-2023:2979-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:2979-1 advisory. - CVE-2023-21971: Fixed a denial-of-service vulnerability in the java.sql.DriverManager.getConnection method when used with untrusted inputs bsc1211247...

5.3CVSS6.4AI score0.01286EPSS
Exploits1References4
OSV
OSV
added 2023/07/26 7:57 a.m.7 views

SUSE-SU-2023:2979-1 Security update for mysql-connector-java

This update for mysql-connector-java fixes the following issues: - CVE-2023-21971: Fixed a denial-of-service vulnerability in the java.sql.DriverManager.getConnection method when used with untrusted inputs bsc1211247...

5.3CVSS5.2AI score0.01286EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2023/06/08 3:5 a.m.40 views

Exploit for CVE-2023-21971

CVE-2023-21971 Connector/J RCE Analysis References Remot...

5.3CVSS6.5AI score0.01286EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.22 views

openSUSE 15 Security Update : mysql-connector-java (SUSE-SU-2023:2241-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:2241-1 advisory. - CVE-2023-21971: Fixed a crash in MySQL Connectors that could be triggered by an authenticated remote user bsc1211247. - Ship protobuf 3.9.2 compatible...

5.3CVSS6.4AI score0.01286EPSS
Exploits1References4
OSV
OSV
added 2023/05/18 7:52 a.m.5 views

SUSE-SU-2023:2241-1 Security update for mysql-connector-java

This update for mysql-connector-java fixes the following issues: - CVE-2023-21971: Fixed a crash in MySQL Connectors that could be triggered by an authenticated remote user bsc1211247. - Ship protobuf 3.9.2 compatible generated files to support older distro versions. - Update to 8.0.32: -...

5.3CVSS5.5AI score0.01286EPSS
Exploits1References3
F5 Networks
F5 Networks
added 2023/05/11 5:54 p.m.31 views

K000134573: MySQL vulnerability CVE-2023-21971

Security Advisory Description Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

5.3CVSS4.5AI score0.01286EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2023/05/09 8:21 p.m.37 views

CVE-2023-21971

A vulnerability was found in MySQL Connector. Successful attacks of this vulnerability can result in the unauthorized ability to cause a hang or frequently repeatable crash, resulting in complete denial of service of MySQL Connectors. This issue can also result in an unauthorized update, insert o...

5.3CVSS6.4AI score0.01286EPSS
Exploits1References4
Amazon
Amazon
added 2023/04/20 12:0 a.m.71 views

Medium: mysql-connector-java

Issue Overview: Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.19 and prior and 5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

5.1CVSS4.5AI score0.032EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.54 views

Amazon Linux 2 : mysql-connector-java (ALAS-2023-2017)

The version of mysql-connector-java installed on the remote host is prior to 5.1.25-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2017 advisory. Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are...

5.1CVSS5.7AI score0.032EPSS
Exploits0References4
OSV
OSV
added 2023/04/18 8:15 p.m.4 views

CVE-2023-21971

Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...

5.3CVSS6.3AI score
Exploits0References4
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.22 views

Oracle MySQL 安全漏洞

Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server, which can be exploited by an attacker to cause unauthorized MySQL connector hangs or frequent and repeated crashes, as well as unauthorized update, insert, or delete acces...

5.3CVSS5.6AI score0.01286EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.9 views

Mageia: Security Advisory (MGASA-2023-0095)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.04123EPSS
Exploits0References4
OSV
OSV
added 2023/03/18 10:16 p.m.7 views

MGASA-2023-0095 Updated mysql-connector-c++ packages fix security vulnerability

The program plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407...

8.8CVSS8.9AI score0.04123EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.20 views

Debian: Security Advisory (DLA-526-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS6.7AI score0.0359EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:0 a.m.3 views

SUSE CVE-2016-5598

Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Connector/Python...

5.6CVSS8.3AI score0.02207EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:51 a.m.5 views

SUSE CVE-2017-3586

Vulnerability in the MySQL Connectors component of Oracle MySQL subcomponent: Connector/J. Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Whil...

6.4CVSS7AI score0.01713EPSS
Exploits0References5
Rows per page
Query Builder