Code injection

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

CVE-2020-2768

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

Vulnerabilities fixed in Oracle MySQL products

Oracle has fixed vulnerabilities in its MySQL products: - MySQL Server - MySQL Workbench - MySQL Enterprise Monitor - MySQL Cluster - MySQL Client - MySQL Connectors One of these vulnerabilities CVE-2019-5482 concerns an erng serious vulnerability in MySQL Server. This vulnerability allows an...

MySQL Cluster 7.2.x < 7.2.33 / 7.3.x < 7.3.21 / 7.4.x < 7.4.19 / 7.5.x < 7.5.10 Denial of Service Vulnerability

The version of MySQL Cluster running on the remote host is 7.2.x prior to 7.2.33, 7.3.x prior to 7.3.21, 7.4.x prior to 7.4.19 or 7.5.x prior to 7.5.10. It is, therefore, affected by a denial of service vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster:...

CVE-2018-2877

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

Code injection

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

CVE-2018-2877

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

CVE-2018-2877

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: ndbcluster/plugin. Supported versions that are affected are 7.2.27 and prior, 7.3.16 and prior, 7.4.14 and prior and 7.5.5 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to t...

Unspecified Vulnerability in Oracle MySQL Cluster (CNVD-2018-09087)

Oracle MySQL Server is a lightweight relational database system. An unspecified vulnerability exists in the Cluster: ndbcluster/plugin component of Oracle MySQL Cluster. An attacker could exploit this vulnerability to affect availability...

CVE-2017-15945

The CVE-2017-15945 issue affects Gentoo package installation scripts for dev-db/mysql, dev-db/mariadb, dev-db/percona-server, dev-db/mysql-cluster, and dev-db/mariadb-galera prior to 2017-09-29. The root cause is misused chown calls on user-writable directory trees, enabling a local user with acc...

MySQL Cluster 7.3.x < 7.3.6 CLSTCONF RCE (July 2017 CPU)

The version of MySQL Cluster running on the remote host is 7.3.x prior to 7.3.6. It is, therefore, affected by an overflow condition in the CLSTCONF component, specifically in the Python sockrecvfrominto function within file Modules/socketmodule.c, due to improper validation of user-supplied inpu...

Unspecified Vulnerability in Oracle MySQL Cluster (CNVD-2017-15710)

Oracle MySQL is an open source relational database management system from Oracle Corporation. The database system is characterized by high performance, low cost, good reliability, etc. Oracle MySQL Cluster is one of the high utility, high redundancy version for distributed computing environments....

Oracle MySQL Cluster Denial of Service Vulnerability

Oracle MySQL is an open source relational database management system from Oracle, of which Oracle MySQL Cluster is a highly practical and redundant version for distributed computing environments. A denial of service vulnerability exists in the Cluster:DD subcomponent of the MySQL Cluster componen...

CVE-2017-3304

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: DD. Supported versions that are affected are 7.2.27 and earlier, 7.3.16 and earlier, 7.4.14 and earlier and 7.5.5 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access...

CVE-2017-3304

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: DD. Supported versions that are affected are 7.2.27 and earlier, 7.3.16 and earlier, 7.4.14 and earlier and 7.5.5 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access...

MySQL Cluster 7.2.x < 7.2.28 DD Subcomponent Arbitrary Data Manipulation (April 2017 CPU)

The version of MySQL Cluster running on the remote host is 7.2.x prior to 7.2.28. It is, therefore, affected by an arbitrary data manipulation vulnerability in the DD subcomponent due to an unspecified flaw. An authenticated, remote attacker can exploit this to update, insert, or delete arbitrary...

CVE-2017-3322

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: NDBAPI. Supported versions that are affected are 7.2.25 and earlier, 7.3.14 and earlier, 7.4.12 and earlier and . Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

CVE-2017-3323

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: General. Supported versions that are affected are 7.2.25 and earlier, 7.3.14 and earlier and 7.4.12 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

CVE-2017-3321

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: General. Supported versions that are affected are 7.2.19 and earlier, 7.3.8 and earlier and 7.4.5 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

Design/Logic Flaw

Vulnerability in the MySQL Cluster component of Oracle MySQL subcomponent: Cluster: General. Supported versions that are affected are 7.2.19 and earlier, 7.3.8 and earlier and 7.4.5 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...