6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
21.3%
Vulnerability in the MySQL Server product of Oracle MySQL (component:
Server: Components Services). Supported versions that are affected are
8.0.27 and prior. Easily exploitable vulnerability allows high privileged
attacker with network access via multiple protocols to compromise MySQL
Server. Successful attacks of this vulnerability can result in unauthorized
update, insert or delete access to some of MySQL Server accessible data as
well as unauthorized read access to a subset of MySQL Server accessible
data and unauthorized ability to cause a partial denial of service (partial
DOS) of MySQL Server. CVSS 3.1 Base Score 4.7 (Confidentiality, Integrity
and Availability impacts). CVSS Vector:
(CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L).
Author | Note |
---|---|
leosilva | since 5.5 is no longer upstream supported and so far we cannot patch it, marking it as ignored. |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 16.04 | noarch | mariadb-10.0 | < any | UNKNOWN |
ubuntu | 18.04 | noarch | mariadb-10.1 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | mariadb-10.3 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | mysql-8.0 | < 8.0.28-0ubuntu0.20.04.3 | UNKNOWN |
ubuntu | 21.10 | noarch | mysql-8.0 | < 8.0.28-0ubuntu0.21.10.3 | UNKNOWN |
ubuntu | 22.04 | noarch | mysql-8.0 | < 8.0.28-0ubuntu2 | UNKNOWN |
ubuntu | 22.10 | noarch | mysql-8.0 | < 8.0.28-0ubuntu2 | UNKNOWN |
ubuntu | 23.04 | noarch | mysql-8.0 | < 8.0.28-0ubuntu2 | UNKNOWN |
ubuntu | 23.10 | noarch | mysql-8.0 | < 8.0.28-0ubuntu2 | UNKNOWN |
ubuntu | 24.04 | noarch | mysql-8.0 | < 8.0.28-0ubuntu2 | UNKNOWN |
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
4.7 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
0.001 Low
EPSS
Percentile
21.3%