关键信息 Advisory ID: NTAP-20200416-0003 Version: 9.0 Last Updated: 02/10/2021 Status: Final Summary Vulnerable Products: Multiple NetApp products that incorporate Oracle MySQL. Vulnerable MySQL Versions: Prior to 5.6.47, 5.7.29, and 8.0.19. Vulnerabilities: Affect older versions of MySQL, leading to unauthorized server takeover, unauthorized data access, or Denial of Service (DoS). Vulnerability Scoring CVEs Listed: 29 CVEs are listed, with severity ratings: - CRITICAL: CVE-2019-5482 (9.8) - MEDIUM: Remaining CVEs (ranging from 4.9 to 6.5) - LOW: CVE-2020-2922 (3.7) Exploitation and Public Announcements NetApp is aware of public discussion regarding this vulnerability. References Further updates to this advisory will be made as additional information becomes available.