Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:43 p.m.7 views

CVE-2022-21687

gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read vulnerability. The attacker must have access to the target host or trick an administrator into executing a malicious gh-ost command on a host running gh-ost, plus...

6.8CVSS6.9AI score0.01003EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/02/01 11:56 a.m.5 views

CVE-2022-21687 Command injection in gh-ost

gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read vulnerability. The attacker must have access to the target host or trick an administrator into executing a malicious gh-ost command on a host running gh-ost, plus...

6.8CVSS6.7AI score0.01003EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/02/01 11:56 a.m.43 views

CVE-2022-21687 Command injection in gh-ost

gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read vulnerability. The attacker must have access to the target host or trick an administrator into executing a malicious gh-ost command on a host running gh-ost, plus...

6.8CVSS6.8AI score0.01003EPSS
Exploits0References2
CVE
CVE
added 2022/02/01 11:56 a.m.84 views

CVE-2022-21687

CVE-2022-21687 affects the gh-ost project for MySQL. Versions prior to 1.1.3 are vulnerable due to improper sanitization of the -database parameter, enabling an attacker with host access or who can coerce an admin into running a malicious gh-ost command to cause arbitrary file reads on the target...

6.8CVSS6.5AI score0.01003EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder