263 matches found
CVE-2024-21013 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2024-21000 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2024-20998 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2024-20966 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2024-20971 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2023-28320 affecting package mysql for versions less than 8.0.34-1
CVE-2023-28320 affecting package mysql for versions less than 8.0.34-1. An upgraded version of the package is available that resolves this issue...
Fedora 37 : community-mysql (2023-6efef709eb)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-6efef709eb advisory. MySQL 8.0.35 Release notes: https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-35.html Tenable has extracted the preceding description block directly...
CVE-2023-22115 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2023-22114 vulnerabilities
Vulnerabilities for packages: mysql...
AZL-31573 CVE-2023-22102 affecting package mysql for versions less than 8.0.34-1
Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.1.0 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful...
AZL-31583 CVE-2023-22084 affecting package mysql for versions less than 8.0.35-1
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serve...
CVE-2023-22066 vulnerabilities
Vulnerabilities for packages: mysql...
AZL-28833 CVE-2023-38039 affecting package mysql for versions less than 8.0.35-1
When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an endless series of header...
AZL-27469 CVE-2023-22008 affecting package mysql for versions less than 8.0.34-1
Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...
AZL-26807 CVE-2023-28319 affecting package mysql for versions less than 8.0.34-1
A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...
CVE-2023-21977 vulnerabilities
Vulnerabilities for packages: mysql...
CVE-2023-21976 vulnerabilities
Vulnerabilities for packages: mysql...
AZL-25804 CVE-2023-27533 affecting package mysql for versions less than 8.0.34-1
A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform...
AZL-25806 CVE-2023-27534 affecting package mysql for versions less than 8.0.34-1
A path traversal vulnerability exists in curl 8.0.0 SFTP implementation causes the tilde character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's home directory. Attackers can...
CVE-2023-21878 vulnerabilities
Vulnerabilities for packages: mysql...