Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2019-10-16T17:40:54
Updated: 2024-08-04T19:03:43.493Z
Reserved: 2018-12-14T00:00:00
Link: CVE-2019-2923
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-10-16T18:15:28.417
Modified: 2023-02-03T21:57:03.233
Link: CVE-2019-2923
Redhat