mysql: Server: Components Services unspecified vulnerability (CPU Apr 2023)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Components Services. Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2023)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

RHEL 7 : rh-mysql80-mysql (RHSA-2024:2619)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2619 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon, mysqld, and many client programs. The...

CVE-2024-21087

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in...

CVE-2024-21096

A flaw was found in the MySQL Server product of Oracle MySQL component: Client: mysqldump. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can resul...

CVE-2024-21054

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized...

CVE-2024-21008

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized...

CVE-2024-21047

A flaw was found in the MySQL Server product of Oracle MySQL component: InnoDB. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to...

CVE-2024-21009

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized...

CVE-2024-21000

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

CVE-2024-20998

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized...

CVE-2024-20994

A flaw was found in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in...

Oracle MySQL Server 8.0.x < 8.0.37 (January 2025 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2025 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging OpenSSL. Supported versions that are affected are 8.0.36 and...

Oracle MySQL Cluster 7.5.x < 7.5.34 (Apr 2024 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.33 and prior,...

Oracle MySQL Connectors C++ and ODBC (Apr 2024 CPU)

The versions of MySQL Connectors installed on the remote host prior to 8.4.0, are affected by a vulnerability as referenced in the April 2024 CPU advisory. - Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/C++ OpenSSL. Supported versions that are affected are...

Oracle MySQL Cluster 7.6.x < 7.6.30 (Apr 2024 CPU)

The versions of MySQL Cluster installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.5.33 and prior,...

Oracle MySQL Server 8.x < 8.4.0 (July 2024 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging OpenSSL. Supported versions that are affected are 8.0.36 and pri...

Oracle MySQL Cluster 8.x < 8.4.0 (April 2024 CPU)

The versions of MySQL Cluster installed on the remote host are affected by a vulnerability as referenced in the April 2024 CPU advisory. - Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General curl. Supported versions that are affected are 8.0.36 and prior and 8.3...

Oracle MySQL Connectors Python (Apr 2024 CPU)

The versions of MySQL Connectors installed on the remote host prior to 8.4.0, are affected by a vulnerability as referenced in the April 2024 CPU advisory. Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/Python. Supported versions that are affected are 8.3.0 and...

Vulnerabilities fixed in Oracle MySQL

Oracle has fixed vulnerabilities in several MySQL products. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can result in the following categories of damage: Denial-of-Service DoS. Manipulation of data Access to sensitive data Oracle has fixed the...