743 matches found
CVE-2019-2963
CVE-2019-2963 affects Oracle MySQL Server (InnoDB). According to the supplied connected advisories, vulnerable versions are MySQL 8.0.17 and earlier. The vulnerability enables high-privilege, network-access attackers to cause the MySQL Server to hang or crash (denial of service). The documents do...
CVE-2019-3004
CVE-2019-3004 affects Oracle MySQL Server (component: Server: Parser). Affected: MySQL Server 8.0.17 and earlier. Description: a low-privilege, network-accessible attacker can cause a hang or as-needed crash (complete DOS) of MySQL Server via multiple protocols. Connected documents corroborate pr...
CVE-2021-2212
CVE-2021-2212 affects Oracle MySQL Server (Server: Optimizer) up to and including 8.0.23. The vulnerability exists in the optimizer component and, per sources, is exploitable by a high-privilege attacker who can reach the server over the network via multiple protocols, with the stated impact of a...
CVE-2019-2957
CVE-2019-2957 is a vulnerability in Oracle MySQL Server (Server: Security: Encryption) affecting MySQL 8.0.17 and earlier. The issue allows a highly privileged attacker who can reach the server over multiple network protocols to trigger a hang or crash (complete or frequent DOS) in MySQL Server. ...
CVE-2019-2977
CVE-2019-2977 affects Oracle Java SE/OpenJDK Hotspot in Java SE 11.0.4 and 13. The connected sources confirm a vulnerability in the Hotspot component with an out-of-bounds issue in the String indexOf path, enabling unauthenticated network access to read a subset of data and cause a partial DOS. P...
CVE-2019-2993
CVE-2019-2993 is a vulnerability in Oracle MySQL’s MySQL Server, specifically the Server: C API component. Affected versions include MySQL 5.7.27 and earlier and 8.0.17 and earlier. The vulnerability is described as difficult to exploit but, if exploited by a low-privilege attacker with network a...
CVE-2020-14568
The CVE-2020-14568 issue affects Oracle MySQL Server (InnoDB) with vulnerable versions 8.0.20 and earlier. The root cause involves InnoDB-related vulnerabilities that can allow a high-privileged attacker with network access to cause a hang or a frequent crash (complete DoS) of MySQL Server via mu...
CVE-2020-14624
CVE-2020-14624 is a MySQL Server vulnerability affecting the Server: JSON component. The available documents identify affected versions as 8.0.20 and prior, with exploitation requiring network access via multiple protocols. Successful attacks can cause the MySQL Server to hang or crash (complete ...
CVE-2020-14680
CVE-2020-14680 affects Oracle MySQL Server, specifically the Server: Optimizer component. Affected are MySQL Server versions 8.0.20 and earlier . The vulnerability is exploitable remotely via multiple protocols by a low-privilege attacker , resulting in a possible hang or crash (DENIAL OF SERVICE...
CVE-2020-14782
CVE-2020-14782 affects Oracle/OpenJDK Java SE/SE Embedded libraries (notably the Certificates processing) with affected versions including Java 7u271, 8u261, 11.0.8, 15 and Java SE Embedded 8u261. Connected advisory data confirms multiple vendors package updates across OpenJDK variants (e.g., ALA...
CVE-2021-2172
CVE-2021-2172 affects Oracle MySQL Server (Server: DML) for 8.0.23 and earlier. An attacker with network access via multiple protocols and low privileges can cause a hang or crash (DoS). CVSSv3.1 base score 6.5 (A: High). Remediation exists in newer MySQL 8.0 releases (e.g., Fedora/AlmaLinux advi...
CVE-2021-2201
CVE-2021-2201 affects Oracle MySQL Server (Server: Partition) and is described across multiple sources as affecting MySQL 8.0.23 and earlier. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause a hang or crash (DoS) in MySQL Server, with CVSS 3.1...
CVE-2022-21589
CVE-2022-21589 affects Oracle MySQL Server (Server: Security: Privileges). Affected versions are 5.7.39 and earlier, and 8.0.16 and earlier. The vulnerability allows a low-privileged, network-accessible attacker to read a subset of MySQL Server data. The description does not provide a patch/versi...
CVE-2024-21145
CVE-2024-21145 affects Oracle Java SE and Oracle GraalVM suites (component: 2D). Affected: Java SE versions 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK versions 17.0.11, 21.0.3, 22.0.1; GraalVM Enterprise Edition 20.3.14 and 21.3.10. The description states a difficult‑to‑...
CVE-2019-2968
CVE-2019-2968 affects the MySQL Server, specifically the InnoDB component. Affected versions are 8.0.17 and earlier. The vulnerability can be exploited by a highly privileged attacker who has network access via multiple protocols, potentially causing a hang or a frequently repeated crash (a compl...
CVE-2019-2982
CVE-2019-2982 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.17 and earlier. The vulnerability can be exploited over the network by a highly privileged attacker via multiple protocols and may cause the MySQL Server to hang or crash (complete DOS). The issue ...
CVE-2020-14620
CVE-2020-14620 affects Oracle MySQL Server (component: Server: DML). Affected are MySQL 8.0.20 and earlier. It enables a high-privileged attacker with network access via several protocols to cause a hang or crash (complete DOS) of MySQL Server. The description does not provide root-cause specific...
CVE-2020-14702
CVE-2020-14702 affects Oracle MySQL Server (MySQL 8.0 family, up to 8.0.20). The issue is in Server: Privileges, enabling a high-privileged attacker with network access via multiple protocols to cause a hang or complete denial-of-service against MySQL Server. Exploitation details are not provided...
CVE-2020-14868
CVE-2020-14868 affects Oracle MySQL Server (Server: Optimizer) and is associated with MySQL 8.0.21 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to trigger a hang or frequent crash (Denial of Service) in MySQL Server. The connected mat...
CVE-2019-2536
CVE-2019-2536 affects the MySQL Server subcomponent “Server: Packaging” in Oracle MySQL. Affected versions are 8.0.13 and earlier. The vulnerability is described as difficult to exploit and requires a user with high privileges and user interaction, with the potential to cause a hang or a complete...
CVE-2020-14799
CVE-2020-14799 is a vulnerability in the Oracle MySQL Server product (component: Server: Security: Encryption) affecting versions 8.0.20 and earlier. The issue allows a high-privileged attacker who has network access via multiple protocols to cause a hang or crash of MySQL Server, resulting in a ...
CVE-2021-2154
CVE-2021-2154 affects Oracle MySQL Server (Server: DML) with vulnerable 5.7.33 and earlier. The connected advisories link this to MariaDB/Mysql family and state an attacker with network access via multiple protocols can cause a hang or a frequent crash (complete DoS) of MySQL/MariaDB Server. The ...
CVE-2021-2299
CVE-2021-2299 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.23 and earlier. Root cause: vulnerability in the Optimizer logic allows a high-privileged, network-proximate attacker to cause a hang or crash (DoS) via multiple protocols. Impact: availability impact (c...
CVE-2022-21417
CVE-2022-21417 affects Oracle MySQL Server (InnoDB) with vulnerable versions 5.7.37 and earlier and 8.0.28 and earlier. The issue can cause the MySQL Server to hang or crash (partial DoS) via network access. Connected sources indicate fixes in MySQL 8.0.29 and later (e.g., via ALMA/Ubuntu advisor...
CVE-2020-14586
CVE-2020-14586 affects Oracle MySQL Server (Server: Security: Privileges). Affected: MySQL 8.0.20 and earlier. Consequence: a high-privilege attacker with network access via multiple protocols can cause the server to hang or crash (complete DoS). Exploit details, affected subcomponents, versions ...
CVE-2020-14623
CVE-2020-14623 is an InnoDB-related vulnerability in Oracle MySQL Server (8.0.x; affected 8.0.20 and earlier) that could allow a highly privileged attacker with network access via multiple protocols to cause a hang or crash (DOS). The issue is cited across multiple advisories ( MiracleLinux AXSA-...
CVE-2020-14800
Summary: CVE-2020-14800 affects Oracle MySQL Server (component: Server: Security: Encryption). Affected versions: 8.0.21 and earlier. The vulnerability could allow a low-privileged, network-accessible attacker to cause a hang or crash (DoS) of MySQL Server. There is no public exploitation detail ...
CVE-2020-14839
CVE-2020-14839 affects Oracle MySQL Server (Server: Optimizer) with affected versions 8.0.21 and earlier. The vulnerability, described across multiple sources, enables a high-privilege attacker with network access to cause a hang or complete DoS (high availability impact) via unspecified attack v...
CVE-2020-14846
CVE-2020-14846 affects Oracle MySQL Server (component: Server: Optimizer). Affected: MySQL 8.0.21 and earlier. Described as an easily exploitable issue where a low-privilege attacker with network access via multiple protocols can cause the server to hang or crash (DoS). CVSS v3.1 base score 6.5 (...
CVE-2020-2770
CVE-2020-2770 affects Oracle MySQL’s Server: Logging component. Affected: MySQL 8.0.18 and earlier. An attacker with network access via multiple protocols can cause a hang or frequent crash (DoS). No fix version/details provided in the supplied documents; no exploitation details are disclosed.
CVE-2022-21245
CVE-2022-21245 affects Oracle MySQL Server (Server: Security: Privileges) with vulnerable versions 5.7.36 and earlier and 8.0.27 and earlier. It allows a network-accessible, low-privilege attacker to perform unauthorized updates/inserts/deletes on data (I:LOW, A:N). The CVE entry provides affecte...
CVE-2022-21325
CVE-2022-21325 affects Oracle MySQL Cluster (Cluster: General) with affected versions up to 7.6.20, 7.4.34, 7.5.24 and up to 8.0.27. The issue is described as a buffer overflow in MySQL Cluster that can allow an attacker with access to the hardware’s physical communication segment to read data fr...
CVE-2024-21138
CVE-2024-21138 affects Oracle Java SE Hotspot and Oracle GraalVM for JDK/Enterprise Edition (as listed in the initial document). Affected versions include Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM Enterpris...
CVE-2019-2997
CVE-2019-2997 concerns the MySQL Server (Oracle MySQL), specifically the Server: DDL component. The affected versions are 8.0.17 and prior. The description states that a high-privilege attacker who can access the server over multiple network protocols can exploit this vulnerability to cause the M...
CVE-2020-14844
CVE-2020-14844 affects Oracle MySQL Server (Server: PS) in 8.0.21 and earlier. An attacker with network access across multiple protocols could exploit this to cause a hang or crash (DoS). CVSS 3.1 base score 4.9 (Availability). Remediation mentioned in connected docs: upgrade to MySQL 8.0.26 or n...
CVE-2020-2901
CVE-2020-2901 affects Oracle MySQL Server (Server: Optimizer). Affected: MySQL 8.0.19 and earlier. Underlying issue allows a high-privilege attacker with network access to cause the server to hang or crash (complete DoS) via multiple protocols. Public exploitation details are not provided in the ...
CVE-2021-2213
CVE-2021-2213 affects Oracle MySQL Server, component Server: Optimizer. Affected products/versions: MySQL Server 8.0.22 and earlier. The issue enables a high-privilege attacker who can access the server over the network (via multiple protocols) to trigger a hang or frequent crash (DoS) in MySQL S...
CVE-2019-2436
CVE-2019-2436 affects Oracle MySQL Server (subcomponent: Server: Replication). Affected: MySQL 8.0.13 and prior. Impact: high-privilege attacker with network access via multiple protocols can cause a hang or complete denial of service, and can also update/insert/delete some data. Remediation: upg...
CVE-2019-2964
CVE-2019-2964 affects Oracle Java SE/Java SE Embedded across multiple OpenJDK branches, including Java 7u231, 8u221, 11.0.4 and 13 (and Embedded 8u221) with vulnerable components in Concurrency. Exploitation can occur via APIs by unauthenticated network access, potentially causing a partial denia...
CVE-2019-2966
CVE-2019-2966 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.17 and earlier. It is remotely exploitable by a low-privilege attacker via multiple network protocols to cause a hang or complete denial of service of MySQL Server. Connected advisories (MiracleLin...
CVE-2020-14578
CVE-2020-14578 affects Oracle Java SE and Java SE Embedded (Libraries component) with Java SE 7u261 and 8u251; Java SE Embedded 8u251. It is exploitable over a network (multiple protocols) by unauthenticated attackers, including via sandboxed Java Web Start apps, applets, or direct API input, lea...
CVE-2020-14861
CVE-2020-14861 affects Oracle MySQL Server (Server: Optimizer) in versions 8.0.21 and earlier. The vulnerability allows a highly privileged attacker with network access via multiple protocols to cause a hang or frequently repeatable crash (complete DoS) of MySQL Server, per the description. The i...
CVE-2024-21068
CVE-2024-21068 affects Oracle Java SE Hotspot (and related GraalVM/JavaFX components) across multiple supported JDK/OpenJDK lines. Affected versions include 8u401, 11.0.22, 17.0.10, 21.0.2, 22 (and GraalVM JDK 17.0.10/21.0.2/22; EE 21.3.9). Impact is unauthenticated remote compromise with possibl...
CVE-2018-3155
CVE-2018-3155 affects Oracle MySQL MySQL Server (Parser) component. Affects MySQL versions 5.7.23 and earlier and 8.0.12 and earlier. Attack requires network access from low-privilege user and can cause a hang or frequently repeatable crash (DoS) of MySQL Server; CVSSv3 base score 7.7 (HIGH), vec...
CVE-2020-14786
CVE-2020-14786 affects Oracle MySQL Server (Server: PS) with affected versions 8.0.21 and earlier. A high-privilege attacker with network access via multiple protocols can cause a hang or frequent crashes (DoS). Some public advisories indicate a fix exists in newer MySQL releases (e.g., upgrades ...
CVE-2020-14866
CVE-2020-14866 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.21 and earlier. An authenticated, network-accessible attacker could trigger a denial of service by causing the optimizer to hang or crash, per connected documents describing the vulnerability’s im...
CVE-2020-2694
CVE-2020-2694 affects MySQL Server (Oracle MySQL), specifically the Server: Information Schema. Affected versions are 8.0.18 and earlier. The vulnerability can be exploited by a low-privilege, network-accessing attacker via multiple protocols to read a subset of MySQL Server data. The CVSS 3.0/3....
CVE-2020-2892
CVE-2020-2892 affects Oracle MySQL Server, component Server: Optimizer, with affected versions 8.0.19 and earlier. The vulnerability allows a high-privileged attacker with network access via multiple protocols to cause the MySQL server to hang or crash (DoS). Related connected documents confirm t...
CVE-2021-2300
CVE-2021-2300 affects Oracle MySQL Server (Server: DML) with affected versions 8.0.23 and earlier. The vulnerability could allow a high-privilege attacker, with network access via multiple protocols, to cause a hang or crash (complete DoS) of MySQL Server. The impact is availability loss as descr...
CVE-2019-2978
CVE-2019-2978 relates to the OpenJDK/Java SE Networking component. Affected Java releases include Java SE: 7u231, 8u221, 11.0.4, 13 and Java SE Embedded: 8u221. Root cause: incorrect handling of nested jar: URLs in the Jar URL handler, which can be triggered via network interaction. Impact: poten...