logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-35624

Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N). #### Notes Author| Note ---|--- [leosilva](<https://launchpad.net/~leosilva>) | since 5.5 is no longer upstream supported and so far we cannot patch it, marking it as ignored.


Affected Package


OS OS Version Package Name Package Version
ubuntu upstream mariadb-10.0 any
ubuntu 16.04 mariadb-10.0 any
ubuntu upstream mariadb-10.1 any
ubuntu 20.04 mariadb-10.3 any
ubuntu upstream mariadb-10.3 any
ubuntu upstream mariadb-10.5 any
ubuntu upstream mariadb-5.5 any
ubuntu upstream mysql-5.5 any
ubuntu upstream mysql-5.6 any
ubuntu upstream mysql-5.7 5.7.36
ubuntu 16.04 mysql-5.7 5.7.36-0ubuntu0.16.04.1+esm1
ubuntu 20.04 mysql-8.0 8.0.27-0ubuntu0.20.04.1
ubuntu 21.04 mysql-8.0 8.0.27-0ubuntu0.21.04.1
ubuntu 21.10 mysql-8.0 8.0.27-0ubuntu0.21.10.1
ubuntu 22.04 mysql-8.0 8.0.27-0ubuntu0.21.10.1
ubuntu upstream mysql-8.0 8.0.27-0ubuntu0.21.10.1
ubuntu upstream mysql-8.0 8.0.27
ubuntu upstream percona-server-5.6 any
ubuntu 16.04 percona-server-5.6 any
ubuntu upstream percona-xtradb-cluster-5.5 any
ubuntu upstream percona-xtradb-cluster-5.6 any
ubuntu 16.04 percona-xtradb-cluster-5.6 any

Related