CVE-2024-21232

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-21232

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-21232.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-21232

Related

UBUNTU-CVE-2024-21232

Published

2024-10-15T20:15:12Z

Modified

2025-03-13T14:59:46.027067Z

Summary

[none]

Details

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).

References

https://www.oracle.com/security-alerts/cpuoct2024.html

Affected packages

Git / github.com/mysql/mysql-server

Affected ranges

Type: GIT
Repo: https://github.com/mysql/mysql-server
Events: Introduced

dc86e412f18b36ce271f791026714e8caa0ec919

Last affected

05e4357f78790766fea8342ecf072645b8310f94

Last affected

527c12ed611f3fe072c3043734319edb2c733099

Last affected

596f0d238489a9cf9f43ce1ff905984f58d227b6

Affected versions

mysql-8.*

mysql-8.0.36

mysql-8.0.37

mysql-8.4.0

mysql-8.4.1

mysql-8.4.2

mysql-cluster-7.*

mysql-cluster-7.5.34

mysql-cluster-7.6.30

mysql-cluster-8.*

mysql-cluster-8.0.36

mysql-cluster-8.0.37

mysql-cluster-8.4.0

mysql-cluster-8.4.1

mysql-cluster-8.4.2