CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Microsoft CVE•added 2020/08/18 7:0 a.m.•1 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).

...

5.5CVSS7AI score0.01943EPSS

Microsoft CVE•added 2020/08/18 7:0 a.m.•1 views

...

5.5CVSS7AI score0.02065EPSS

Microsoft CVE•added 2020/08/18 7:0 a.m.•1 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

...

7.2CVSS7AI score0.02092EPSS

Microsoft CVE•added 2020/08/18 7:0 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7AI score0.01988EPSS

BDU FSTEC•added 2020/08/12 12:0 a.m.•2 views

Vulnerability of the Server component: The DML of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component relates to deficiencies in access control. Exploiting this vulnerability could allow an attacker to cause service interruptions using the MySQL protocol...

6.8CVSS6.4AI score0.02187EPSS

BDU FSTEC•added 2020/08/12 12:0 a.m.•1 views

Vulnerability of the Server component: Security: Audit of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server component, specifically Security: Audit of the Oracle MySQL Server database management system, is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL protocol...

6.8CVSS6.4AI score0.02187EPSS

BDU FSTEC•added 2020/08/12 12:0 a.m.•1 views

Vulnerability of the Server component: The Oracle MySQL Server database management system’s Parser component, which allows a hacker to cause a service failure.

The vulnerability of the Oracle MySQL Server component of the database management system’s parser module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to cause service interruptions using the MySQL protocol...

6.8CVSS6.8AI score0.02586EPSS

BDU FSTEC•added 2020/08/12 12:0 a.m.•2 views

Vulnerability of the Server component: The Oracle MySQL Server, a database management system, allows attackers to trigger service interruptions.

The vulnerability of the Oracle MySQL Server component of the database management system’s JSON module is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to cause service interruptions using the MySQL protocol...

6.8CVSS6.4AI score0.02058EPSS

BDU FSTEC•added 2020/08/12 12:0 a.m.•2 views

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system allows a attacker to gain read, modify, add, or delete access to data.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain access to read, modify, add, or delete data using the MySQL protocol...

4CVSS6.3AI score0.01314EPSS

RedhatCVE•added 2020/08/04 4:1 p.m.•28 views

CVE-2020-14576

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: UDF. Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server...

4CVSS2.7AI score0.02299EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•24 views

CVE-2020-14697

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

6.5CVSS4.1AI score0.01955EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•23 views

CVE-2020-14663

6.5CVSS4.1AI score0.02092EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•28 views

CVE-2020-14654

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4CVSS1.8AI score0.02187EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•24 views

CVE-2020-14634

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

4CVSS4.4AI score0.01641EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•34 views

CVE-2020-14623

4CVSS2.2AI score0.01985EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•30 views

CVE-2020-14620

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

4CVSS2AI score0.02187EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•34 views

CVE-2020-14619

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks...

4CVSS3.7AI score0.02586EPSS

RedhatCVE•added 2020/08/04 4:0 p.m.•26 views

CVE-2020-14586

4CVSS2.4AI score0.01988EPSS