Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data as well as unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N).
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Netapp
Netapp active Iq Unified Manager Netapp oncommand Insight Netapp oncommand Workflow Automation Netapp snapcenter |
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:* cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:windows:*:* cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:* cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_server:8.3.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Netapp
Netapp active Iq Unified Manager Netapp oncommand Insight Netapp oncommand Workflow Automation Netapp snapcenter |
Mon, 04 Nov 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2024-04-16T21:25:57.876Z
Updated: 2024-11-04T21:13:05.507Z
Reserved: 2023-12-07T22:28:10.644Z
Link: CVE-2024-21000
Vulnrichment
Updated: 2024-08-01T22:13:41.392Z
NVD
Status : Analyzed
Published: 2024-04-16T22:15:13.520
Modified: 2024-11-27T16:36:11.717
Link: CVE-2024-21000
Redhat