971 matches found
CVE-2021-2201
CVE-2021-2201 affects Oracle MySQL Server (Server: Partition) and is described across multiple sources as affecting MySQL 8.0.23 and earlier. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause a hang or crash (DoS) in MySQL Server, with CVSS 3.1...
CVE-2022-21589
CVE-2022-21589 affects Oracle MySQL Server (Server: Security: Privileges). Affected versions are 5.7.39 and earlier, and 8.0.16 and earlier. The vulnerability allows a low-privileged, network-accessible attacker to read a subset of MySQL Server data. The description does not provide a patch/versi...
CVE-2024-21145
CVE-2024-21145 affects Oracle Java SE and Oracle GraalVM suites (component: 2D). Affected: Java SE versions 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK versions 17.0.11, 21.0.3, 22.0.1; GraalVM Enterprise Edition 20.3.14 and 21.3.10. The description states a difficult‑to‑...
CVE-2019-2968
CVE-2019-2968 affects the MySQL Server, specifically the InnoDB component. Affected versions are 8.0.17 and earlier. The vulnerability can be exploited by a highly privileged attacker who has network access via multiple protocols, potentially causing a hang or a frequently repeated crash (a compl...
CVE-2019-2982
CVE-2019-2982 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.17 and earlier. The vulnerability can be exploited over the network by a highly privileged attacker via multiple protocols and may cause the MySQL Server to hang or crash (complete DOS). The issue ...
CVE-2020-14620
CVE-2020-14620 affects Oracle MySQL Server (component: Server: DML). Affected are MySQL 8.0.20 and earlier. It enables a high-privileged attacker with network access via several protocols to cause a hang or crash (complete DOS) of MySQL Server. The description does not provide root-cause specific...
CVE-2020-14702
CVE-2020-14702 affects Oracle MySQL Server (MySQL 8.0 family, up to 8.0.20). The issue is in Server: Privileges, enabling a high-privileged attacker with network access via multiple protocols to cause a hang or complete denial-of-service against MySQL Server. Exploitation details are not provided...
CVE-2020-14868
CVE-2020-14868 affects Oracle MySQL Server (Server: Optimizer) and is associated with MySQL 8.0.21 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to trigger a hang or frequent crash (Denial of Service) in MySQL Server. The connected mat...
CVE-2020-14797
CVE-2020-14797 affects Oracle/OpenJDK Java SE Libraries (path validation) across multiple Java versions. Connected sources indicate this vulnerability residing in the Libraries component with affected OpenJDK packages such as java-1.8.0-openjdk and related ALAS/Amazon advisories, listing path val...
CVE-2020-14799
CVE-2020-14799 is a vulnerability in the Oracle MySQL Server product (component: Server: Security: Encryption) affecting versions 8.0.20 and earlier. The issue allows a high-privileged attacker who has network access via multiple protocols to cause a hang or crash of MySQL Server, resulting in a ...
CVE-2021-2154
CVE-2021-2154 affects Oracle MySQL Server (Server: DML) with vulnerable 5.7.33 and earlier. The connected advisories link this to MariaDB/Mysql family and state an attacker with network access via multiple protocols can cause a hang or a frequent crash (complete DoS) of MySQL/MariaDB Server. The ...
CVE-2021-2299
CVE-2021-2299 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.23 and earlier. Root cause: vulnerability in the Optimizer logic allows a high-privileged, network-proximate attacker to cause a hang or crash (DoS) via multiple protocols. Impact: availability impact (c...
CVE-2022-21417
CVE-2022-21417 affects Oracle MySQL Server (InnoDB) with vulnerable versions 5.7.37 and earlier and 8.0.28 and earlier. The issue can cause the MySQL Server to hang or crash (partial DoS) via network access. Connected sources indicate fixes in MySQL 8.0.29 and later (e.g., via ALMA/Ubuntu advisor...
CVE-2024-20973
CVE-2024-20973 affects Oracle MySQL Server (Server: Optimizer) with vulnerable 8.0.35 and earlier, and 8.2.0 and earlier. The issue enables a low-privilege, network-exposed attacker to cause a hang or crash (DoS). A fix is available: upgrade to a newer package/version (e.g., MySQL 8.0.36+ as refe...
CVE-2020-14586
CVE-2020-14586 affects Oracle MySQL Server (Server: Security: Privileges). Affected: MySQL 8.0.20 and earlier. Consequence: a high-privilege attacker with network access via multiple protocols can cause the server to hang or crash (complete DoS). Exploit details, affected subcomponents, versions ...
CVE-2020-14623
CVE-2020-14623 is an InnoDB-related vulnerability in Oracle MySQL Server (8.0.x; affected 8.0.20 and earlier) that could allow a highly privileged attacker with network access via multiple protocols to cause a hang or crash (DOS). The issue is cited across multiple advisories ( MiracleLinux AXSA-...
CVE-2020-14800
Summary: CVE-2020-14800 affects Oracle MySQL Server (component: Server: Security: Encryption). Affected versions: 8.0.21 and earlier. The vulnerability could allow a low-privileged, network-accessible attacker to cause a hang or crash (DoS) of MySQL Server. There is no public exploitation detail ...
CVE-2020-14839
CVE-2020-14839 affects Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.21 and earlier. The vulnerability, described across multiple sources, enables a high-privilege attacker with network access to cause a hang or complete DoS (high availability impact) via unspecified attack v...
CVE-2020-14846
CVE-2020-14846 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.21 and earlier. Described as an easily exploitable issue where a low-privilege attacker with network access via multiple protocols can cause the server to hang or crash (DoS). CVSS v3.1 base score 6.5 (...
CVE-2022-21245
CVE-2022-21245 affects Oracle MySQL Server (Server: Security: Privileges) with vulnerable versions 5.7.36 and earlier and 8.0.27 and earlier. It allows a network-accessible, low-privilege attacker to perform unauthorized updates/inserts/deletes on data (I:LOW, A:N). The CVE entry provides affecte...
CVE-2022-21325
CVE-2022-21325 affects Oracle MySQL Cluster (Cluster: General) with affected versions up to 7.6.20, 7.4.34, 7.5.24 and up to 8.0.27. The issue is described as a buffer overflow in MySQL Cluster that can allow an attacker with access to the hardware’s physical communication segment to read data fr...
CVE-2024-21138
CVE-2024-21138 affects Oracle Java SE Hotspot and Oracle GraalVM for JDK/Enterprise Edition (as listed in the initial document). Affected versions include Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM Enterpris...
CVE-2019-2997
CVE-2019-2997 concerns the MySQL Server (Oracle MySQL), specifically the Server: DDL component. The affected versions are 8.0.17 and prior. The description states that a high-privilege attacker who can access the server over multiple network protocols can exploit this vulnerability to cause the M...
CVE-2020-14844
CVE-2020-14844 affects Oracle MySQL Server (Server: PS) in 8.0.21 and earlier. An attacker with network access across multiple protocols could exploit this to cause a hang or crash (DoS). CVSS 3.1 base score 4.9 (Availability). Remediation mentioned in connected docs: upgrade to MySQL 8.0.26 or n...
CVE-2020-2770
CVE-2020-2770 affects Oracle MySQL’s Server: Logging component. Affected: MySQL 8.0.18 and earlier. An attacker with network access via multiple protocols can cause a hang or frequent crash (DoS). No fix version/details provided in the supplied documents; no exploitation details are disclosed.
CVE-2020-2901
CVE-2020-2901 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.19 and earlier. Underlying issue allows a high-privilege attacker with network access to cause the server to hang or crash (complete DoS) via multiple protocols. Public exploitation details are not provided in the ...
CVE-2021-2213
CVE-2021-2213 affects Oracle MySQL Server, component Server: Optimizer. Affected products/versions: MySQL Server 8.0.22 and earlier. The issue enables a high-privilege attacker who can access the server over the network (via multiple protocols) to trigger a hang or frequent crash (DoS) in MySQL S...
CVE-2021-2357
CVE-2021-2357 affects Oracle MySQL Server, component Server: Optimizer, with vulnerable versions listed as 8.0.25 and earlier. The issue can allow a high-privilege attacker on the network to cause the MySQL Server to hang or crash (complete DoS). Several connected sources corroborate this family ...
CVE-2020-14578
CVE-2020-14578 affects Oracle Java SE and Java SE Embedded (Libraries component) with Java SE 7u261 and 8u251; Java SE Embedded 8u251. It is exploitable over a network (multiple protocols) by unauthenticated attackers, including via sandboxed Java Web Start apps, applets, or direct API input, lea...
CVE-2020-14861
CVE-2020-14861 affects Oracle MySQL Server (Server: Optimizer) in versions 8.0.21 and earlier. The vulnerability allows a highly privileged attacker with network access via multiple protocols to cause a hang or frequently repeatable crash (complete DoS) of MySQL Server, per the description. The i...
CVE-2019-2966
CVE-2019-2966 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.17 and earlier. It is remotely exploitable by a low-privilege attacker via multiple network protocols to cause a hang or complete denial of service of MySQL Server. Connected advisories (MiracleLin...
CVE-2021-2478
CVE-2021-2478 affects Oracle MySQL Server, component Server: DML. The vulnerability is documented for MySQL 8.0.26 and earlier. Connected advisories indicate that multiple Linux distributions released fixes by upgrading mysql packages to newer 8.0.x releases (e.g., AlmaLinux 8.0.30, Fedora 8.0.27...
CVE-2024-21068
CVE-2024-21068 affects Oracle Java SE Hotspot (and related GraalVM/JavaFX components) across multiple supported JDK/OpenJDK lines. Affected versions include 8u401, 11.0.22, 17.0.10, 21.0.2, 22 (and GraalVM JDK 17.0.10/21.0.2/22; EE 21.3.9). Impact is unauthenticated remote compromise with possibl...
CVE-2018-3155
CVE-2018-3155 affects Oracle MySQL MySQL Server (Parser) component. Affects MySQL versions 5.7.23 and earlier and 8.0.12 and earlier. Attack requires network access from low-privilege user and can cause a hang or frequently repeatable crash (DoS) of MySQL Server; CVSSv3 base score 7.7 (HIGH), vec...
CVE-2020-14786
CVE-2020-14786 affects Oracle MySQL Server (Server: PS) with affected versions 8.0.21 and earlier. A high-privilege attacker with network access via multiple protocols can cause a hang or frequent crashes (DoS). Some public advisories indicate a fix exists in newer MySQL releases (e.g., upgrades ...
CVE-2020-14866
CVE-2020-14866 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.21 and earlier. An authenticated, network-accessible attacker could trigger a denial of service by causing the optimizer to hang or crash, per connected documents describing the vulnerability’s im...
CVE-2020-2694
CVE-2020-2694 affects MySQL Server (Oracle MySQL), specifically the Server: Information Schema. Affected versions are 8.0.18 and earlier. The vulnerability can be exploited by a low-privilege, network-accessing attacker via multiple protocols to read a subset of MySQL Server data. The CVSS 3.0/3....
CVE-2020-2892
CVE-2020-2892 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.19 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to cause the MySQL server to hang or crash (DoS). Related connected documents confirm t...
CVE-2021-2479
CVE-2021-2479 affects MySQL Server (Server: DML). Affects 8.0.26 and earlier; remediation in downstream advisories points to upgrading to newer MySQL 8.0.x (examples: AlmaLinux 8.0.30 release; Mariner advisories note fixes for versions
CVE-2023-22111
CVE-2023-22111 affects Oracle MySQL Server, component Server: UDF . Affects supported versions 8.0.33 and prior. The vulnerability is exploitable by a high-privilege attacker with network access (via multiple protocols) and can result in a hang or crash (DoS) of MySQL Server. Root cause is descri...
CVE-2020-14631
CVE-2020-14631 affects Oracle MySQL Server (component: Server: Security: Audit). The MiracleML/MiracleLinux and related Nessus/RHSA entries indicate affected MySQL Server versions 8.0.20 and earlier; exploit involves high-privilege attacker with network access via multiple protocols, potentially ...
CVE-2020-14651
CVE-2020-14651 affects MySQL Server (Oracle MySQL), component Server: Security: Roles. Affected versions are 8.0.20 and earlier. An attacker with high privileges who can access the server over the network via multiple protocols can cause a hang or crash (DOS) and may gain unauthorized update/inse...
CVE-2020-2779
The CVE concerns Oracle MySQL Server: Privileges in MySQL Server 8.0.18 and earlier. An attacker with network access (via multiple protocols) could exploit this to cause a hang or frequent crashes (complete DoS). CVSS v3.0 base score is 4.9 (availability impact). Remediation noted in connected ma...
CVE-2021-2300
CVE-2021-2300 affects Oracle MySQL Server (Server: DML) with affected versions 8.0.23 and earlier. The vulnerability could allow a high-privilege attacker, with network access via multiple protocols, to cause a hang or crash (complete DoS) of MySQL Server. The impact is availability loss as descr...
CVE-2021-35559
CVE-2021-35559 is a vulnerability in Oracle Java SE/OpenJDK (Swing component) affecting Java SE versions 7u311, 8u301, 11.0.12, and 17, plus Oracle GraalVM Enterprise Edition 20.3.3 and 21.2.0. The issue is described as easily exploitable with network access and can lead to partial denial of serv...
CVE-2020-14614
CVE-2020-14614 affects the MySQL Server (Oracle MySQL) package, specifically the Server: Optimizer. Affected versions are 8.0.20 and earlier. An attacker with high privileges and network access via multiple protocols can exploit this to cause a hang or a complete denial-of-service crash of MySQL ...
CVE-2020-14654
CVE-2020-14654 affects Oracle MySQL Server (component: Server: Optimizer). Affected are MySQL 8.0.20 and earlier. Exploitation requires network access via multiple protocols and can cause a hang or crash (complete DOS) of the MySQL Server. CVSS v3.1 base score 4.9 (Availability). Connected adviso...
CVE-2020-14656
CVE-2020-14656 is a MySQL (Oracle MySQL) vulnerability in the Server: Locking component affecting 8.0.20 and earlier. The issue allows a high-privileged attacker with network access via multiple protocols to cause a hang or crash (complete DOS) of MySQL Server. The available connected advisories ...
CVE-2020-14845
CVE-2020-14845 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.21 and earlier. The vulnerability enables a network-authenticated, high-privileged attacker to cause a denial of service (hang or crash) in MySQL Server via multiple protocols. Impact: availability disruption; CVS...
CVE-2020-2580
CVE-2020-2580 – MySQL Server (Oracle MySQL) – DDL vulnerability . The vulnerability affects MySQL Server component: Server: DDL in 8.0.17 and earlier. A high-privilege attacker who can reach the server over the network via multiple protocols can exploit this to cause a hang or a near-frequent cra...