logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-2471

Description

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Connectors accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Connectors. CVSS 3.1 Base Score 5.9 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H). #### Notes Author| Note ---|--- [leosilva](<https://launchpad.net/~leosilva>) | since 5.5 is no longer upstream supported and so far we cannot patch it, marking it as ignored.


Affected Package


OS OS Version Package Name Package Version
ubuntu upstream mariadb-10.0 any
ubuntu 16.04 mariadb-10.0 any
ubuntu upstream mariadb-10.1 any
ubuntu 20.04 mariadb-10.3 any
ubuntu upstream mariadb-10.3 any
ubuntu upstream mariadb-10.5 any
ubuntu upstream mariadb-5.5 any
ubuntu upstream mysql-5.5 any
ubuntu upstream mysql-5.6 any
ubuntu 20.04 mysql-8.0 8.0.27-0ubuntu0.20.04.1
ubuntu 21.04 mysql-8.0 8.0.27-0ubuntu0.21.04.1
ubuntu 21.10 mysql-8.0 8.0.27-0ubuntu0.21.10.1
ubuntu 22.04 mysql-8.0 8.0.27-0ubuntu0.21.10.1
ubuntu upstream mysql-8.0 8.0.27
ubuntu upstream percona-server-5.6 any
ubuntu 16.04 percona-server-5.6 any
ubuntu upstream percona-xtradb-cluster-5.5 any
ubuntu upstream percona-xtradb-cluster-5.6 any
ubuntu 16.04 percona-xtradb-cluster-5.6 any

Related