Published: 15/04/2020 Updated: 07/11/2023

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

CVSS v3 Base Score: 5 | Impact Score: 3.4 | Exploitability Score: 1.6

VMScore: 454

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.19 and prior and 5.1.48 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 5.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L).

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql connector\\/j
fedoraproject fedora 32
fedoraproject fedora 33
debian debian linux 8.0
debian debian linux 9.0
oracle weblogic server 12.1.3.0.0
oracle weblogic server 12.2.1.3.0
oracle weblogic server 12.2.1.4.0
oracle weblogic server 14.1.1.0.0

Synopsis Moderate: Red Hat Process Automation Manager 790 security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat Process Automation ManagerRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring ...

Synopsis Moderate: Red Hat Decision Manager 790 security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat Decision ManagerRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...

Three vulnerabilities have been found in the MySQL Connector/J JDBC driver For the oldstable distribution (stretch), these problems have been fixed in version 5149-0+deb9u1 We recommend that you upgrade your mysql-connector-java packages For the detailed security status of mysql-connector-java please refer to its security tracker page at: http ...

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J) Supported versions that are affected are 8019 and prior and 5148 and prior Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors Successful attacks require human interac ...

NVD-CWE-noinfo https://www.oracle.com/security-alerts/cpuapr2020.html https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html https://www.debian.org/security/2020/dsa-4703 https://security.gentoo.org/glsa/202105-27 https://www.oracle.com/security-alerts/cpujan2022.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2020:4961 https://www.debian.org/security/2020/dsa-4703

CVE-2020-2934

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect