BIT-mysql-client-2021-2144

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mysql-client/BIT-mysql-client-2021-2144.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-mysql-client-2021-2144

Aliases

Published

2024-03-06T11:09:04.495Z

Modified

2024-07-15T22:27:53.182053Z

Summary

[none]

Details

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

References

Affected packages

Bitnami / mysql-client

Package

Name: mysql-client
Purl: pkg:bitnami/mysql-client

Severity

7.2 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

5.5.0

Fixed

5.5.66

Introduced

10.1.0

Fixed

10.1.42

Introduced

10.2.0

Fixed

10.2.28

Introduced

10.3.0

Fixed

10.3.19

Introduced

10.4.0

Fixed

10.4.9