Mysql Cluster Security Vulnerabilities and Issues — Page 2 of Mysql Cluster CVE List

CVE-2022-21308

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where th...

2.9CVSS2.2AI score0.00312EPSS

CVE-2022-21313

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to ...

CVE-2022-21315

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

CVE-2022-21320

CVE•added 2022/01/19 12:15 p.m.•219 views

CVE-2022-21284

CVE•added 2022/01/19 12:15 p.m.•219 views

CVE-2022-21285

CVE•added 2022/01/19 12:15 p.m.•219 views

CVE-2022-21335

CVE•added 2022/01/19 12:15 p.m.•217 views

CVE-2022-21327

6.3CVSS5.6AI score0.01177EPSS

CVE•added 2022/01/19 12:15 p.m.•217 views

CVE-2022-21337

CVE•added 2020/04/15 2:15 p.m.•215 views

CVE-2020-2768

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with networ...

6.3CVSS5.9AI score0.0041EPSS

CVE•added 2022/02/24 7:15 p.m.•214 views

CVE-2021-44533

Node.js < 12.22.9, < 14.18.3, < 16.13.2, and

5.3CVSS6.3AI score0.00268EPSS

CVE•added 2022/02/24 7:15 p.m.•204 views

CVE-2021-44532

Node.js < 12.22.9, < 14.18.3, < 16.13.2, and

5.3CVSS6.6AI score0.00097EPSS

CVE•added 2020/06/08 2:15 p.m.•169 views

CVE-2020-8172

TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and

7.4CVSS7.4AI score0.01016EPSS

CVE•added 2022/04/19 9:15 p.m.•166 views

CVE-2022-21489

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.6AI score0.12889EPSS

CVE•added 2025/04/15 9:15 p.m.•163 views

CVE-2025-30681

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise M...

2.7CVSS2.3AI score0.00049EPSS

CVE•added 2024/10/15 8:15 p.m.•149 views

CVE-2024-21203

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...

4.9CVSS4.8AI score0.00189EPSS

CVE•added 2025/04/15 9:16 p.m.•124 views

CVE-2025-30722

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise My...

6.8CVSS4.8AI score0.00097EPSS

CVE•added 2018/03/16 1:29 p.m.•121 views

CVE-2018-1324

A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of service attack against services that use Compress' zip pa...

5.5CVSS5.3AI score0.0028EPSS

CVE•added 2024/10/15 8:15 p.m.•118 views

CVE-2024-21238

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols...

5.3CVSS6AI score0.00212EPSS

CVE•added 2024/10/15 8:15 p.m.•118 views

CVE-2024-21247

Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to co...

3.8CVSS3.9AI score0.00105EPSS

CVE•added 2024/10/15 8:15 p.m.•110 views

CVE-2024-21218

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...

4.9CVSS5AI score0.00189EPSS

CVE•added 2024/10/15 8:15 p.m.•109 views

CVE-2024-21230

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to com...

6.5CVSS6.4AI score0.00275EPSS

CVE•added 2025/01/21 9:15 p.m.•98 views

CVE-2025-21518

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to com...

6.5CVSS5.9AI score0.00108EPSS

CVE•added 2022/07/19 10:15 p.m.•86 views

CVE-2022-21550

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.36 and prior, 7.5.26 and prior, 7.6.22 and prior and and 8.0.29 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the phy...

6.3CVSS5.7AI score0.35218EPSS

CVE•added 2022/04/19 9:15 p.m.•84 views

CVE-2022-21490

6.3CVSS5.6AI score0.27796EPSS

CVE•added 2022/07/19 10:15 p.m.•80 views

CVE-2022-21519

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successful ...

5.9CVSS5.3AI score0.00261EPSS

CVE•added 2023/01/18 1:15 a.m.•76 views

CVE-2023-21860

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: Internal Operations). Supported versions that are affected are 7.4.38 and prior, 7.5.28 and prior, 7.6.24 and prior and 8.0.31 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to...

6.3CVSS5.7AI score0.00175EPSS

CVE•added 2021/10/20 11:17 a.m.•68 views

CVE-2021-35621

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.33 and prior, 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.7AI score0.38256EPSS

CVE•added 2022/01/19 12:15 p.m.•68 views

CVE-2022-21380

6.3CVSS5.6AI score0.05048EPSS

CVE•added 2025/01/21 9:15 p.m.•67 views

CVE-2025-21520

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Ser...

1.8CVSS1.4AI score0.00016EPSS

CVE•added 2025/04/15 9:15 p.m.•66 views

CVE-2025-30693

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. ...

5.5CVSS5AI score0.00056EPSS

CVE•added 2025/01/21 9:15 p.m.•65 views

CVE-2025-21531

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.40 and prior, 8.4.3 and prior and 9.1.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...

4.9CVSS4.4AI score0.00074EPSS

CVE•added 2025/04/15 9:15 p.m.•60 views

CVE-2025-21575

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL S...

6.5CVSS6.2AI score0.00053EPSS

CVE•added 2020/10/21 3:15 p.m.•59 views

CVE-2020-14853

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: NDBCluster Plugin). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster. Succ...

4.9CVSS4.4AI score0.00225EPSS

CVE•added 2021/10/20 11:17 a.m.•58 views

CVE-2021-35590

6.5CVSS5.6AI score0.28894EPSS

CVE•added 2021/10/20 11:16 a.m.•57 views

CVE-2021-35584

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: ndbcluster/plugin DDL). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster. ...

4.3CVSS3.9AI score0.00389EPSS

CVE•added 2021/10/20 11:17 a.m.•57 views

CVE-2021-35613

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successful ...

4.3CVSS3.7AI score0.01008EPSS

CVE•added 2021/07/21 3:15 p.m.•54 views

CVE-2021-2411

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: JS module). Supported versions that are affected are 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successfu...

4.3CVSS3.9AI score0.00905EPSS

CVE•added 2021/10/20 11:17 a.m.•54 views

CVE-2021-35592

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication se...

CVE•added 2025/04/15 9:15 p.m.•54 views

CVE-2025-21574

6.5CVSS5.9AI score0.00053EPSS

CVE•added 2021/10/20 11:17 a.m.•52 views

CVE-2021-35598

CVE•added 2021/10/20 11:17 a.m.•52 views

CVE-2021-35618

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where th...

1.8CVSS2AI score0.00323EPSS

CVE•added 2021/10/20 11:17 a.m.•51 views

CVE-2021-35594

CVE•added 2017/01/27 10:59 p.m.•50 views

CVE-2016-5541

Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: NDBAPI). Supported versions that are affected are 7.2.26 and earlier, 7.3.14 and earlier and 7.4.12 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple p...

5.8CVSS4AI score0.00851EPSS

CVE•added 2021/10/20 11:17 a.m.•49 views

CVE-2021-35593