8 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
32.0%
Vulnerability in the MySQL Server product of Oracle MySQL (component:
Server: Security: LDAP Auth). Supported versions that are affected are
8.0.21 and prior. Easily exploitable vulnerability allows low privileged
attacker with access to the physical communication segment attached to the
hardware where the MySQL Server executes to compromise MySQL Server.
Successful attacks of this vulnerability can result in takeover of MySQL
Server. CVSS 3.1 Base Score 8.0 (Confidentiality, Integrity and
Availability impacts). CVSS Vector:
(CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
Author | Note |
---|---|
leosilva | since 5.5 is no longer upstream supported and so far we cannot patch it, marking it as ignored. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.04.2 | UNKNOWN |
ubuntu | 20.10 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 21.04 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 21.10 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 22.04 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 22.10 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 23.04 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 23.10 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 24.04 | noarch | mysql-8.0 | < 8.0.22-0ubuntu0.20.10.2 | UNKNOWN |
ubuntu | 16.04 | noarch | percona-server-5.6 | < any | UNKNOWN |
8 High
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:L/Au:S/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
32.0%