Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Thu, 15 May 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-400 | |
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: oracle
Published:
Updated: 2025-05-15T15:44:46.708Z
Reserved: 2023-12-07T22:28:10.637Z
Link: CVE-2024-20977

Updated: 2024-08-01T22:06:37.479Z

Status : Modified
Published: 2024-01-16T22:15:44.687
Modified: 2025-05-15T16:15:31.763
Link: CVE-2024-20977


No data.