Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).
Metrics
Affected Vendors & Products
References
History
Sat, 19 Oct 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | mysql: From CVEorg collector | mysql: Thread Pooling unspecified vulnerability (CPU Oct 2024) |
Wed, 16 Oct 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Oracle mysql
|
|
Weaknesses | NVD-CWE-noinfo | |
CPEs | cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql:9.0.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql:9.0.1:*:*:*:*:*:*:* |
|
Vendors & Products |
Oracle mysql
|
Wed, 16 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 16 Oct 2024 01:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | mysql: From CVEorg collector | |
References |
| |
Metrics |
threat_severity
|
threat_severity
|
Tue, 15 Oct 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.1 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H). | |
First Time appeared |
Oracle
Oracle mysql Cluster Oracle mysql Server |
|
CPEs | cpe:2.3:a:oracle:mysql_cluster:7.5.35_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_cluster:7.6.31_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_cluster:8.0.39_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_cluster:8.4.2_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_cluster:9.0.1_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_server:8.0.39_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_server:8.4.1_and_prior:*:*:*:*:*:*:* cpe:2.3:a:oracle:mysql_server:9.0.1_and_prior:*:*:*:*:*:*:* |
|
Vendors & Products |
Oracle
Oracle mysql Cluster Oracle mysql Server |
|
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2024-10-15T19:52:47.971Z
Updated: 2024-10-25T13:07:34.656Z
Reserved: 2023-12-07T22:28:10.698Z
Link: CVE-2024-21238
Vulnrichment
Updated: 2024-10-25T13:07:34.656Z
NVD
Status : Analyzed
Published: 2024-10-15T20:15:13.160
Modified: 2024-10-16T20:40:07.527
Link: CVE-2024-21238
Redhat