Lucene search
Ubuntu.comUB:CVE-2023-22095HistoryOct 17, 2023 - 12:00 a.m.
CVE-2023-22095
2023-10-1700:00:00
ubuntu.com
ubuntu.com
9
mysql server
vulnerability
oracle mysql
dos
unauthorized access
network access
low privileged attacker
0.0004 Low
EPSS
Percentile
12.5%
Vulnerability in the MySQL Server product of Oracle MySQL (component:
Server: Optimizer). The supported version that is affected is 8.1.0. Easily
exploitable vulnerability allows low privileged attacker with network
access via multiple protocols to compromise MySQL Server. Successful
attacks of this vulnerability can result in unauthorized ability to cause a
hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS
3.1 Base Score 6.5 (Availability impacts). CVSS Vector:
(CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Notes
| Author | Note |
|---|---|
| leosilva | since 5.5 is no longer upstream supported and so far we cannot patch it, marking it as ignored. |
| mdeslaur | 8.1.0 only |
Related
openvas
openvas
Oracle MySQL Server 8.1.0 Security Update (cpuoct2023) - Linux
2023-10-18 00:00:00
Oracle MySQL Server 8.1.0 Security Update (cpuoct2023) - Windows
2023-10-18 00:00:00
osv
osv
CVE-2023-22095
2023-10-17 22:15:14
cve
cve
CVE-2023-22095
2023-10-17 22:15:14
redhatcve
redhatcve
CVE-2023-22095
2023-10-19 13:47:56
prion
prion
Code injection
2023-10-17 22:15:00
cvelist
cvelist
CVE-2023-22095
2023-10-17 21:03:02
debiancve
debiancve
CVE-2023-22095
2023-10-17 22:15:14
nessus
nessus
Oracle MySQL Server 8.x < 8.2.0 (October 2023 CPU)
2023-10-19 00:00:00
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2023-10-17 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00