CVE-2024-20977

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

CVE-2024-20969

Oracle MySQL Server: CVE-2024-20969 affects 8.0.35 and older and 8.2.0 and older (Server: DDL). An attacker with network access and high privileges can cause a hang/crash (DoS) and unauthorized data updates/deletes. Upgrade to 8.0.36-1 or newer (>=8.0.36-1) to remediate where available; check ...

CVE-2024-20971

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

CVE-2024-20967

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Replication. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

PT-2024-1343 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.35 and prior Oracle MySQL Server versions 8.2.0 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of Oracle MySQL Server. This allows a...

PT-2024-1338 · Oracle +6 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.34 and prior MySQL Server version 8.1.0 Description: The issue is related to insufficient input validation in the Server: Options component of Oracle MySQL Server. A high-privileged attacker with network access via...

SUSE SLES15 Security Update : mariadb (SUSE-SU-2023:4907-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4907-1 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.43 and prior,...

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities in Oracle MySQL Server

Summary IBM Security Guardium has released an update to address these vulnerabilities. Vulnerability Details CVEID:CVE-2023-21940 DESCRIPTION: An unspecified vulnerability in Oracle MySQL Server related to the Server: Components Services component could allow a remote authenticated attacker to...

PT-2023-9635 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.37 and prior Description: The issue is related to the Server: Pluggable Auth component of Oracle MySQL Server. It allows a high privileged attacker with network access via multiple protocols to compromise the...

PT-2023-9629 · Oracle +4 · Mysql Server +3

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.37 and prior Oracle MySQL Server versions 8.4.0 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of Oracle MySQL Server. It allows a low-privilege...

PT-2023-9627 · Oracle +1 · Mysql Server

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.4.0 and prior Description: The issue is related to insufficient input validation in the Server: Thread Pooling component of Oracle MySQL Server. It allows an attacker with network access via multiple protocols t...

The vulnerability of the MySQL Server component of the Oracle MySQL database management system, related to improper privilege assignment, allows attackers to execute DoS attacks.

The vulnerability of the MySQL Server component of the Oracle MySQL database management system is related to the improper assignment of privileges. Exploiting this vulnerability allows a malicious actor to carry out a DoS Denial-of-Service attack remotely...

Rocky Linux 8 : mysql:8.0 (RLSA-2022:7119)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7119 advisory. mysql: Server: DML multiple unspecified vulnerabilities CVE-2021-2478, CVE-2021-2479, CVE-2021-35591, CVE-2021-35607, CVE-2022-21301, CVE-2022-21413...

BIT-2020-14789

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

BIT-2022-21427

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

SUSE CVE-2020-2761

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

SUSE CVE-2020-2925

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: PS. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of...

SUSE CVE-2020-14614

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

SUSE CVE-2020-14620

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

SUSE CVE-2020-14632

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...