743 matches found
CVE-2018-3247
CVE-2018-3247 affects Oracle MySQL Server, subcomponent Server: Merge. Affected versions are MySQL 5.6.41 and earlier, 5.7.23 and earlier, and 8.0.12 and earlier. The vulnerability can be exploited by a high-privilege attacker with network access via multiple protocols to cause a hang or frequent...
CVE-2019-2502
CVE-2019-2502 affects Oracle MySQL Server (InnoDB). Affected versions are 8.0.13 and earlier. The vulnerability can be exploited by a high-privilege attacker with network access via multiple protocols to cause a hang or frequent crash (DoS) of MySQL Server. The provided documents do not include e...
CVE-2022-21297
CVE-2022-21297 affects Oracle MySQL Server (Server: Optimizer). Affected products/versions: MySQL 8.0.26 and earlier. Root cause described in public sources: vulnerability in the Server: Optimizer that can be triggered by network access via multiple protocols by a high-privileged attacker, leadin...
CVE-2022-21378
CVE-2022-21378 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.27 and prior. The vulnerability can be triggered by a high-privilege attacker with network access via multiple protocols, potentially causing a hang or frequent, repeatable crash (complete DoS) of...
CVE-2018-3067
CVE-2018-3067 pertains to Oracle MySQL Server, specifically the Server: Replication subcomponent. The vulnerability affects MySQL 8.0.11 and earlier and can be exploited by a highly privileged attacker with network access via multiple protocols, potentially causing a hang or a frequently occurrin...
CVE-2022-21311
CVE-2022-21311 affects Oracle MySQL Cluster (Cluster: General) with vulnerable versions 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior, and 8.0.27 and prior. The issue, in MySQL Cluster, can allow a highly privileged attacker with access to the hardware’s physical communication segment to r...
CVE-2022-21362
CVE-2022-21362 affects Oracle MySQL Server (component: Server: Information Schema). Affected versions are 8.0.27 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to cause the MySQL Server to hang or crash, resulting in a complete/partial ...
CVE-2024-21054
CVE-2024-21054 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected versions are 8.0.36 and prior and 8.3.0 and prior. The vulnerability is exploitable over the network by a high-privilege attacker and can cause a hang or crash (complete DOS) of MySQL Server, with C...
CVE-2024-21069
CVE-2024-21069 affects Oracle MySQL Server (Server: DDL). Affected versions are 8.0.36 and prior and 8.3.0 and prior. The vulnerability can be triggered by a high-privileged attacker with network access via multiple protocols to cause a hang or frequent crash (DoS) of MySQL Server. No remediation...
CVE-2018-3062
CVE-2018-3062 affects Oracle MySQL Server (Memcached subcomponent). Affected versions are MySQL 5.6.40 and earlier, 5.7.22 and earlier, and 8.0.11 and earlier. The vulnerability can be exploited by a low-privileged attacker over the memcached network interface to cause the MySQL server to hang or...
CVE-2022-21339
The CVE-2022-21339 entry refers to a vulnerability in Oracle MySQL Server (component: Server: Optimizer) affecting MySQL 8.0.27 and prior. The root cause is unspecified in the provided description beyond the Optimizer impact, with an attacker that must have network access via multiple protocols a...
CVE-2022-21342
CVE-2022-21342 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions: 8.0.27 and earlier. Exploitation requires network access via multiple protocols by a high-privilege attacker and can cause the server to hang or crash, resulting in a complete DOS (CVSS v3.1 base 4.9). M...
CVE-2022-21365
CVE-2022-21365 is discussed across multiple connected advisories as affecting Oracle Java SE and GraalVM EE components (ImageIO, JAXP, Libraries, Hotspot) with affected Java versions including 7u321, 8u311, 11.0.13, 17.0.1 (and later 17.01 in some entries); GraalVM EE: 20.3.4 and 21.3.0. The desc...
CVE-2022-21611
CVE-2022-21611 affects Oracle MySQL Server (InnoDB) with affected versions 8.0.30 and earlier. The vulnerability is described as a high-privilege, local issue that can lead to a hang or complete denial of service of MySQL Server. The available connected sources consistently map this CVE to InnoDB...
CVE-2022-21349
CVE-2022-21349 is an Oracle Java SE/GraalVM Enterprise Edition vulnerability affecting multiple Java components (e.g., 2D, ImageIO, JAXP, Hotspot, Libraries) across affected releases. Public advisories show affected Java SE versions (e.g., 7u321, 8u311) and GraalVM EE releases (20.3.4, 21.3.0). E...
CVE-2022-21372
CVE-2022-21372 affects Oracle MySQL Server (MySQL) 8.0.27 and earlier, with vulnerable area in Server: Security: Encryption (and related input validation in the optimizer per CNVD/CNNVD). The result is a potential partial denial of service with network access via multiple protocols. Exploitation ...
CVE-2023-21962
CVE-2023-21962 affects Oracle MySQL Server (Server: Components Services). Affected: MySQL 8.0.32 and earlier. Attackers with network access via multiple protocols can exploit this to cause a hang or frequent crash (DOS). CVSS v3.1 base score 4.9 (Availability). The provided documents identify the...
CVE-2018-3145
CVE-2018-3145 affects Oracle MySQL Server (Server: Parser) with impact on availability. Affected: MySQL Server 8.0.12 and earlier; vulnerability allows a low-privilege, network-accessible attacker to trigger a hang or frequent crash (DoS) via multiple protocols. CVSS 3.0 base score 6.5 (AV:N/AC:L...
CVE-2019-2513
CVE-2019-2513 affects Oracle MySQL Server Shell in MySQL 8.0.13 and earlier. A low-privilege, locally authenticated attacker who can log on to the infrastructure where MySQL Server runs can compromise the server, with successful attacks enabling read access to a subset of data. The vulnerability ...
CVE-2020-14591
CVE-2020-14591 affects MySQL Server (Oracle MySQL) specifically the Server: Audit Plug-in. Affected versions are 8.0.20 and earlier. The vulnerability allows a low-privileged attacker who can reach MySQL over multiple network protocols to cause a hang or a frequently repeatable crash (a full avai...
CVE-2022-21310
CVE-2022-21310 affects Oracle MySQL Cluster (Cluster: General). Affected versions are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior, and 8.0.27 and prior. The vulnerability is exploitable with adjacent network access, but requires high privileges and user interaction; attacker must be phys...
CVE-2022-21635
CVE-2022-21635 affects Oracle MySQL Server (InnoDB) with vulnerable 8.0.29 and earlier. Root cause: InnoDB component allows high-privilege attacker with network access via multiple protocols to modify data or cause a DoS via hangs/crashes. Affected packages include MySQL Server; Debian/Mariner en...
CVE-2024-20994
CVE-2024-20994 affects Oracle MySQL Server, component Server: Information Schema. Affected versions are 8.0.36 and prior, and 8.3.0 and prior. The vulnerability allows a low-privilege, network-accessing attacker to cause a hang or complete DoS of MySQL Server. No exploitation details are provided...
CVE-2024-21013
CVE-2024-21013 affects Oracle MySQL Server (Server: Optimizer). Affected versions: 8.0.36 and prior, 8.3.0 and prior. Attack requires network access with high privileges; successful exploitation can cause a hang or crash (complete DoS) of MySQL Server. CVSS v3.1 base score 4.4 (Availability). No ...
CVE-2018-3137
CVE-2018-3137 : In Oracle MySQL, the MySQL Server component (Server: Optimizer) is affected. Affected versions are 8.0.12 and earlier. An attacker with network access via multiple protocols and low privileges can remotely cause the server to hang or crash (denial of service). CVSS v3.1 base score...
CVE-2022-21296
CVE-2022-21296 affects Oracle Java SE (JAXP, Serialization, Libraries, 2D/Hotspot) and Oracle GraalVM Enterprise Edition. Affected Java SE versions: 7u321, 8u311, 11.0.13, 17.0.1; GraalVM EE: 20.3.4, 21.3.0. The issue allows unauthenticated, network-accessible exploitation that can lead to readin...
CVE-2022-21599
CVE-2022-21599 affects Oracle MySQL Server (Stored Procedure) in 8.0.30 and earlier. The vulnerability enables a high-privilege attacker with network access via multiple protocols to trigger a hang or crash of MySQL Server (DoS). Public advisories in the connected documents indicate this CVE is f...
CVE-2023-21945
CVE-2023-21945 affects the Oracle MySQL Server (component: Server: Optimizer). Affected: 8.0.32 and earlier. The issue enables a high-privilege attacker with network access to cause a hang or frequent crash (DoS) of MySQL Server. Impact documented as Availability loss (CVSS v3.1 base 4.9). Exploi...
CVE-2024-21004
CVE-2024-21004 affects Oracle Java SE (JavaFX) with affected versions Oracle Java SE: 8u401 and Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Root cause: vulnerability in the JavaFX deployment path that loads untrusted code. Impact: can lead to unauthorized update/insert/delete of data i...
CVE-2022-21326
CVE-2022-21326 affects Oracle MySQL Cluster (component: Cluster: General). Affected versions include 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior, and 8.0.27 and prior. The vulnerability is exploitable by a high-privilege attacker with access to the physical communication segment attached...
CVE-2022-21348
CVE-2022-21348 affects Oracle MySQL Server (InnoDB) with affected versions 8.0.27 and earlier. The vulnerability allows a high-privilege attacker with network access to cause a hang or frequent crashes in MySQL Server (complete DoS) per the CVE description. Connected advisories indicate mitigatio...
CVE-2023-21933
CVE-2023-21933 affects Oracle MySQL Server (component: Server: DDL). Affected: MySQL 8.0.32 and earlier. Described as an easily exploitable vulnerability where a high-privilege attacker, through network access via multiple protocols, can cause the server to hang or crash (DoS). The F5 advisory no...
CVE-2018-3077
CVE-2018-3077 affects Oracle MySQL Server: DDL. Affected: MySQL 5.7.22 and earlier; 8.0.11 and earlier. Exploitation can cause a denial of service with high availability impact, exploitable with network access via multiple protocols and requires HIGH privileges. Root cause is in the Server: DDL h...
CVE-2018-3285
CVE-2018-3285 is a vulnerability in the MySQL Server component of Oracle MySQL (Server: Windows). Affected versions are 8.0.12 and prior. It allows a high-privileged attacker with network access via multiple protocols to cause a hang or a frequently repeating crash (complete DOS) of MySQL Server....
CVE-2022-21625
Vulnerability CVE-2022-21625 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.30 and earlier. Underlying issue in the Optimizer can allow a high-privilege attacker with network access (via multiple protocols) to cause a hang or crash (DoS) of MySQL Server. Exploitation require...
CVE-2022-21637
CVE-2022-21637 affects MySQL Server (InnoDB) with affected versions 8.0.30 and earlier. Root cause involves InnoDB vulnerability leading to a complete DOS (hang/crash) under network access with high privileges. Remediation observed in connected data shows upgrades to MySQL 8.0.32 (e.g., AlmaLinux...
CVE-2024-21005
CVE-2024-21005 affects Oracle Java SE / GraalVM Enterprise Edition (JavaFX). Affected: Oracle Java SE 8u401; GraalVM EE 20.3.13 and 21.3.9. Description notes a difficult-to-exploit vulnerability that requires network access via multiple protocols and user interaction, with potential unauthorized ...
CVE-2022-21344
CVE-2022-21344 affects Oracle MySQL Server (Server: Replication). Affected: MySQL 5.7.36 and earlier, 8.0.27 and earlier. Exploited by a high-privilege attacker with network access via multiple protocols to cause a hang or frequent crash (DoS). Remediation in public advisories recommends upgradin...
CVE-2022-21640
CVE-2022-21640 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.30 and earlier. Description across connected documents indicates an unspecified vulnerability in the Optimizer that can enable a high-privilege attacker with network access to cause a hang or crashes (D...
CVE-2024-21087
CVE-2024-21087 affects Oracle MySQL Server (Server: Group Replication Plugin). Affected versions: 8.0.36 and prior, and 8.3.0 and prior. An attacker with network access can exploit via multiple protocols to cause a hang or a complete DOS crash. CVSS 3.1 base score 4.9 (Availability impact). Explo...
CVE-2022-21352
CVE-2022-21352 affects Oracle MySQL Server (InnoDB) with impacted versions 8.0.26 and prior. The vulnerability is described as allowing a high-privilege attacker with network access via multiple protocols to compromise MySQL Server, potentially leading to unauthorized creation, deletion, or modif...
CVE-2022-21368
CVE-2022-21368 affects Oracle MySQL Server (component: Server: Components Services) with affected versions 8.0.27 and earlier. The vulnerability enables a high-privilege attacker with network access via multiple protocols to perform unauthorized updates, inserts, deletes, and reads of MySQL data,...
CVE-2022-21604
CVE-2022-21604 affects Oracle MySQL Server (InnoDB) up to version 8.0.30. The root cause is an InnoDB vulnerability that enables a high-privilege attacker with network access via multiple protocols to cause a hang or frequent crash (denial of service). Impact is availability loss for MySQL Server...
CVE-2022-21316
CVE-2022-21316 affects Oracle MySQL Cluster (Cluster: General) with affected versions 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior, and 8.0.27 and prior. The vulnerability is exploitable by a high-privilege actor with logon to the infrastructure where MySQL Cluster runs, and requires user...
CVE-2022-21321
CVE-2022-21321 affects Oracle MySQL Cluster (Cluster: General). Affected: MySQL Cluster products at least up to 7.6.20, 7.5.24, 7.4.34 and 8.0.27 (per NVD/CVE records). Root cause details are not provided here, but the vulnerability allows an attacker with access to the physical communication seg...
CVE-2024-21009
CVE-2024-21009 affects Oracle MySQL Server (Server: Optimizer). Affected are MySQL 8.0.36 and earlier and 8.3.0 and earlier. The vulnerability can be exploited by a high-privilege attacker with network access via multiple protocols to cause a hang or a frequent crash (denial of service). The CVSS...
CVE-2024-21052
CVE-2024-21052 affects Oracle MySQL Server (component: Server: DML). Affected: MySQL 8.0.34 and prior. The vulnerability could be exploited by a highly privileged attacker with network access via multiple protocols to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVS...
CVE-2018-3280
CVE-2018-3280 affects the MySQL Server component (Server: JSON) of Oracle MySQL. Affected products/versions: MySQL 8.0.12 and earlier. The vulnerability allows a highly privileged attacker who can access the server over multiple network protocols to cause a hang or a frequent, repeatable crash of...
CVE-2022-21358
CVE-2022-21358 affects Oracle/MySQL Server (component: Server: Security: Encryption). Affected versions are 8.0.27 and earlier. The vulnerability can be exploited by a low-privilege attacker with network access via multiple protocols, potentially causing the MySQL Server to hang or crash (complet...
CVE-2023-21955
CVE-2023-21955 affects Oracle MySQL Server (component: Server: Partition); affected versions are 8.0.32 and earlier. It is a network-exploitable vulnerability that can allow a high-privileged attacker to cause a hang or frequent crash (DOS). CVSS v3.1 Base Score 4.9 (A: High, Availability). Publi...