CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4770 matches found

OSV•added 2023/01/18 12:15 a.m.•2 views

UBUNTU-CVE-2023-21867

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.8AI score0.00853EPSS

Exploits0References4

OSV•added 2023/01/18 12:15 a.m.•0 views

UBUNTU-CVE-2023-21865

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS6.3AI score0.01115EPSS

Exploits0References3

Tenable Nessus•added 2023/01/18 12:0 a.m.•45 views

Oracle MySQL Server (October 2023 CPU)

The versions of MySQL Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging cURL. Supported versions that are affected are 5.7.40 and pri...

9.8CVSS6.2AI score0.43131EPSS

Exploits1References26

CVE•added 2023/01/17 11:35 p.m.•424 views

CVE-2023-21879

CVE-2023-21879 affects Oracle MySQL Server (component: Server: Optimizer) with affected versions 8.0.31 and earlier. The initial description notes a network-accessible high-privilege attacker could cause a hang or frequent crashes (complete DoS) of MySQL Server. Connected documents corroborate th...

4.9CVSS5AI score0.00853EPSS

Exploits0References1Affected Software1

CVE•added 2023/01/17 11:35 p.m.•132 views

CVE-2023-21873

CVE-2023-21873 affects Oracle MySQL Server, specifically the Server: Optimizer. Affected versions are 8.0.31 and earlier. The vulnerability is exploitable over the network and can allow a high-privileged attacker with access via multiple protocols to cause a hang or a frequently repeating crash (...

4.9CVSS5.2AI score0.00853EPSS

Exploits0References1Affected Software1

CVE•added 2023/01/17 11:35 p.m.•143 views

CVE-2023-21870

CVE-2023-21870 is a MySQL Server vulnerability in the Server: Optimizer component. Affected versions are 8.0.31 and earlier. The issue allows a high-privilege attacker with network access via multiple protocols to cause a hang or complete denial of service (DOS) on the MySQL Server, per the initi...

4.9CVSS5.2AI score0.00853EPSS

Exploits0References1Affected Software1

CVE•added 2023/01/17 11:35 p.m.•136 views

CVE-2023-21868

CVE-2023-21868 is a vulnerability in Oracle MySQL Server (Server: Optimizer). Affected are MySQL 8.0.31 and earlier. A low-privilege, network-access attacker can cause a hang or crash (DOS). This is corroborated by connected advisories stating the same affected component/versions and impact. Reme...

6.5CVSS6.3AI score0.00879EPSS

Exploits0References1Affected Software1

CVE•added 2023/01/17 11:35 p.m.•132 views

CVE-2023-21867

CVE-2023-21867 is a vulnerability in Oracle MySQL Server (Server: Optimizer) affecting 8.0.31 and earlier. The connected Nessus/MiracleLinux and related advisories confirm the flaw exists in the MySQL Server Optimizer component and can be exploited over the network with multiple protocols by a us...

4.9CVSS5.2AI score0.00853EPSS

Exploits0References1Affected Software1

Debian CVE•added 2023/01/17 11:35 p.m.•21 views

CVE-2023-21867

4.9CVSS5AI score0.00853EPSS

Exploits0

CVE•added 2023/01/17 11:35 p.m.•126 views

CVE-2023-21865

CVE-2023-21865 affects Oracle MySQL Server (Server: Optimizer). Affected versions: 8.0.30 and earlier. Root cause: vulnerability in the Optimizer component that can be triggered via network by a high-privilege attacker, enabling a hang or frequent crash (complete DOS) of MySQL Server. Exploitatio...

4.9CVSS5.3AI score0.01115EPSS

Exploits0References1Affected Software1

Debian CVE•added 2023/01/17 11:35 p.m.•32 views

CVE-2023-21865

4.9CVSS5AI score0.01115EPSS

Exploits0

Patchstack•added 2023/01/17 12:0 a.m.•12 views

WordPress Kraken.io Image Optimizer Plugin <= 2.6.7 is vulnerable to Broken Access Control

Software Kraken.io Image Optimizer Type Plugin Vulnerable versions = 2.6.7 Fixed in 2.6.8 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-22708 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 9c68812a5173 Credits István Márton...

6.5AI score0.00615EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2023/01/17 12:0 a.m.•3 views

PT-2023-1223 · Mysql Server +6 · Mysql Server +6

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.31 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of MySQL Server, allowing a high-privileged attacker with network access via multiple protocols to...

9.8CVSS7AI score0.78483EPSS

Exploits10References405

Positive Technologies•added 2023/01/17 12:0 a.m.•2 views

PT-2023-1207 · Mysql Server +4 · Mysql Server +4

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.30 and prior Description: The issue is related to insufficient input validation in the Server: Optimizer component of MySQL Server, allowing a high-privileged attacker with network access via multiple protocols to...

9.8CVSS7AI score0.78483EPSS

Exploits10References383

Positive Technologies•added 2023/01/17 12:0 a.m.•2 views

PT-2023-1204 · Mysql Server +6 · Mysql Server +6

9.8CVSS7AI score0.78483EPSS

Exploits10References406

Positive Technologies•added 2023/01/17 12:0 a.m.•3 views

PT-2023-1217 · Mysql Server +6 · Mysql Server +6

9.8CVSS6.7AI score0.78483EPSS

Exploits10References405

Positive Technologies•added 2023/01/17 12:0 a.m.•4 views

PT-2023-1225 · Oracle +7 · Mysql Server +6