BIT-mariadb-2021-2032

See a problem?
Import Source
https://github.com/bitnami/vulndb/tree/main/data/mariadb/BIT-mariadb-2021-2032.json
JSON Data
https://api.test.osv.dev/v1/vulns/BIT-mariadb-2021-2032
Aliases
Published
2024-03-06T11:07:23.876Z
Modified
2024-07-15T22:41:51.081827Z
Summary
[none]
Details

Vulnerability in the MySQL Server product of Oracle MySQL (component: Information Schema). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

Database specific
{
    "cpes": [
        "cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*"
    ],
    "severity": "Medium"
}
References

Affected packages

Bitnami / mariadb

Package

Name
mariadb
Purl
pkg:bitnami/mariadb

Severity

  • 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Affected ranges

Type
SEMVER
Events
Introduced
10.0.0
Fixed
10.0.11