N/A

Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.42 and prior and 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server and unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 5.9 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H).

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H

N/A

Oracle MySQL 安全漏洞

Oracle MySQL Server是美国甲骨文（Oracle）公司的一款关系型数据库。 Oracle MySQL 的 MySQL Server product 存在安全漏洞，该漏洞源于 Client programs 模块允许低权限攻击者通过多种协议进行网络访问来危害 MySQL 服务器。成功攻击此漏洞可能会导致未经授权的能力导致 MySQL 服务器挂起或频繁重复崩溃（完整的 DOS），以及对 MySQL 服务器可访问数据的子集进行未经授权的读取访问。

N/A

N/A