CVE-2024-21241

CVE-2024-21241 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. The vulnerability can be exploited by a network-adjacent attacker with high privileges via multiple protocols to cause a hang or crash (DoS) in ...

CVE-2024-21239

CVE-2024-21239: Oracle MySQL Server InnoDB vulnerability affecting MySQL Server 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. An attacker with network access via multiple protocols can exploit this to cause a denial of service (hang or frequently repeating crash) in MySQL Server. ...

CVE-2024-21236

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

CVE-2024-21237

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication GCS. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple...

CVE-2024-21238

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols...

CVE-2024-21230

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

CVE-2024-21232

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Components Services. Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromi...

CVE-2024-21231

Vulnerability in the MySQL Server product of Oracle MySQL component: Client programs. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to...

CVE-2024-21231

CVE-2024-21231 : Vulnerability in Oracle MySQL Server (component: Client programs). Affected versions are 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. The issue is described as difficult to exploit and allows a low-privilege attacker with network access via multiple protocols to ...

CVE-2024-21218

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

CVE-2024-21212

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Health Monitor. Supported versions that are affected are 8.0.39 and prior and 8.4.0. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serve...

CVE-2024-21213

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server execute...

CVE-2024-21213

CVE-2024-21213 concerns Oracle MySQL Server (InnoDB) with affected versions: 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. The vulnerability is described as an easily exploitable denial of service causing a hang or crash of MySQL Server, enabling a high-privilege attacker who can ...

CVE-2024-21212

CVE-2024-21212 (Oracle MySQL Server) is implemented with concrete details in connected docs: affected product is MySQL Server (Oracle) with Health Monitor component. Affected versions are 8.0.39 and earlier and 8.4.0; exploitation can allow a network-access attacker with high privileges and via m...

CVE-2024-21209

Vulnerability in the MySQL Client product of Oracle MySQL component: Client: mysqldump. Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

CVE-2024-21204

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: PS. Supported versions that are affected are 8.4.0 and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

CVE-2024-21203

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...

CVE-2024-21203

CVE-2024-21203 : Affects Oracle MySQL Server (component: Server: FTS). Affected versions: 8.0.39 and earlier, 8.4.2 and earlier, 9.0.1 and earlier. The issue allows a/high-privilege attacker with network access via multiple protocols to compromise the server, with potential for a hang or repeated...

CVE-2024-21201

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

CVE-2024-21200

CVE-2024-21200 is a MySQL Server vulnerability (component: Server: Optimizer) affecting MySQL 8.0.35 and earlier. It can be triggered by an attacker with network access via multiple protocols to cause a hang or complete DOS. Several connected advisories/plugin data (e.g., Nessus plugin UNPATCHED_...