Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv3

CVE-2023-21980

Published: 18/04/2023 Updated: 27/04/2023
CVSS v3 Base Score: 7.1 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 0
Subscribe to Oracle

Vulnerability Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.41 and prior and 8.0.32 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H).

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

oracle mysql

Vendor Advisories

Debian CVElist Bug Report Logs: mysql-8.0: CVE-2023-21982 CVE-2023-21980 CVE-2023-21977 CVE-2023-21976 CVE-2023-21972 CVE-2023-21966 CVE-2023-21962 CVE-2023-21955 CVE-2023-21953 CVE-2023-21947 CVE-2023-21946 CVE-2023-21945 CVE-2023-21940 CVE-2023-21935 CVE-2023-21933 CVE-2023-21929 CVE-2023-21920 CVE-2023-21919 CVE-2023-21911
Debian Bug report logs - #1034719 mysql-80: CVE-2023-21982 CVE-2023-21980 CVE-2023-21977 CVE-2023-21976 CVE-2023-21972 CVE-2023-21966 CVE-2023-21962 CVE-2023-21955 CVE-2023-21953 CVE-2023-21947 CVE-2023-21946 CVE-2023-21945 CVE-2023-21940 CVE-2023-21935 CVE-2023-21933 CVE-2023-21929 CVE-2023-21920 CVE-2023-21919 CVE-2023-21911 Package: s ...
Amazon Linux AMI: ALAS-2023-1768
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges) Supported versions that are affected are 5741 and prior and 8030 and prior Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vul ...
Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs) Supported versions that are affected are 5741 and prior and 8032 and prior Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromis ...

References

NVD-CWE-noinfohttps://www.oracle.com/security-alerts/cpuapr2023.htmlhttps://security.netapp.com/advisory/ntap-20230427-0007/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034719https://nvd.nist.govhttps://alas.aws.amazon.com/ALAS-2023-1768.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460CVE-2024-4646CVE-2024-29212IMAPCVE-2023-36672CVE-2024-34547command injectionCVE-2024-4651stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook