Home

CVE-2021-2007

Description

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

Risk Information

Base Score
3.7
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.531

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Mysql 8.0.19Windows
Multiple Vulnerabilities are affected in Mysql 8.0.5Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.5Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.6Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.1Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.2Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.0Windows
Multiple Vulnerabilities are affected in Mysql 8.0.19 (For Linux)Linux
Multiple Vulnerabilities are affected in Mysql 8.0.5 (For Linux)Linux
mariadb:10.3 security and bug fix update (RLSA-2019:3708) Judy-1.0.5-18.module+el8.4.0+427+adf35707.i686.rpmLinux
mariadb-connector-c security, bug fix, and enhancement update (RLSA-2020:5503) mariadb-connector-c-3.1.11-2.el8_3.i686.rpmLinux
mariadb-connector-c security, bug fix, and enhancement update (RLSA-2020:5503) mariadb-connector-c-3.1.11-2.el8_3.x86_64.rpmLinux
mariadb-connector-c security, bug fix, and enhancement update (RLSA-2020:5503) mariadb-connector-c-devel-3.1.11-2.el8_3.i686.rpmLinux
mariadb-connector-c security, bug fix, and enhancement update (RLSA-2020:5503) mariadb-connector-c-devel-3.1.11-2.el8_3.x86_64.rpmLinux
mariadb-connector-c security, bug fix, and enhancement update (RLSA-2020:5503) mariadb-connector-c-config-3.1.11-2.el8_3.noarch.rpmLinux
Moderate: mariadb-connector-c security, bug fix, and enhancement update mariadb-connector-c-3.1.11-2.el8_3.i686.rpmLinux
Moderate: mariadb-connector-c security, bug fix, and enhancement update mariadb-connector-c-3.1.11-2.el8_3.x86_64.rpmLinux
Moderate: mariadb-connector-c security, bug fix, and enhancement update mariadb-connector-c-config-3.1.11-2.el8_3.noarch.rpmLinux
Moderate: mariadb-connector-c security, bug fix, and enhancement update mariadb-connector-c-devel-3.1.11-2.el8_3.i686.rpmLinux
Moderate: mariadb-connector-c security, bug fix, and enhancement update mariadb-connector-c-devel-3.1.11-2.el8_3.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234