Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 2.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Sat, 19 Oct 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | mysql: From CVEorg collector | mysql: mysqldump unspecified vulnerability (CPU Oct 2024) |
Thu, 17 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 16 Oct 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oracle mysql
|
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql:9.0.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql:9.0.1:*:*:*:*:*:*:* |
|
Vendors & Products |
Oracle mysql
|
Wed, 16 Oct 2024 01:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | mysql: From CVEorg collector | |
References |
| |
Metrics |
threat_severity
|
threat_severity
|
Tue, 15 Oct 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 2.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N). | |
First Time appeared |
Oracle
Oracle mysql Client |
|
CPEs | cpe:2.3:a:oracle:mysql_client:8.4.2_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_client:9.0.1_and_prior:*:*:*:*:*:*:* |
|
Vendors & Products |
Oracle
Oracle mysql Client |
|
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2024-10-15T19:52:41.222Z
Updated: 2024-11-01T17:03:07.114Z
Reserved: 2023-12-07T22:28:10.690Z
Link: CVE-2024-21209
Vulnrichment
Updated: 2024-11-01T17:03:07.114Z
NVD
Status : Modified
Published: 2024-10-15T20:15:09.640
Modified: 2024-11-21T08:53:58.743
Link: CVE-2024-21209
Redhat