CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-21592 – mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2022)
https://notcve.org/view.php?id=CVE-2022-21592
18 Oct 2022 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.7.39 and prior and 8.0.29 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). • https://security.netapp.com/advisory/ntap-20221028-0013 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2022-39402
https://notcve.org/view.php?id=CVE-2022-39402
18 Oct 2022 — Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where MySQL Shell executes to compromise MySQL Shell. While the vulnerability is in MySQL Shell, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQ... • https://www.oracle.com/security-alerts/cpuoct2022.html •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 0CVE-2022-21617 – mysql: Server: Connection Handling unspecified vulnerability (CPU Oct 2022)
https://notcve.org/view.php?id=CVE-2022-21617
18 Oct 2022 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 5.7.39 and prior and 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability imp... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EG3VBUHKCUXVWBSCD2FHCWIAMZO4X3PR •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-39410 – mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)
https://notcve.org/view.php?id=CVE-2022-39410
18 Oct 2022 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EG3VBUHKCUXVWBSCD2FHCWIAMZO4X3PR •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2022-21607 – mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)
https://notcve.org/view.php?id=CVE-2022-21607
18 Oct 2022 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). • https://security.netapp.com/advisory/ntap-20221028-0013 •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2022-21641 – mysql: Server: Optimizer unspecified vulnerability (CPU Oct 2022)
https://notcve.org/view.php?id=CVE-2022-21641
18 Oct 2022 — Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). • https://security.netapp.com/advisory/ntap-20221028-0013 •
CVSS: 9.8EPSS: 12%CPEs: 8EXPL: 0CVE-2022-21489 – Oracle MySQL Cluster Data Node Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2022-21489
19 Apr 2022 — Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks... • https://security.netapp.com/advisory/ntap-20220429-0005 •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-21486 – Oracle MySQL Cluster Data Node Improper Validation of Array Index Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-21486
19 Apr 2022 — Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks... • https://security.netapp.com/advisory/ntap-20220429-0005 •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-21485 – Oracle MySQL Cluster Data Node Improper Validation of Array Index Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-21485
19 Apr 2022 — Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks... • https://security.netapp.com/advisory/ntap-20220429-0005 •
CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-21484 – Oracle MySQL Cluster Data Node Improper Validation of Array Index Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-21484
19 Apr 2022 — Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.35 and prior, 7.5.25 and prior, 7.6.21 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks... • https://security.netapp.com/advisory/ntap-20220429-0005 •