Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00007.html | Mailing List Third Party Advisory |
http://www.openwall.com/lists/oss-security/2020/09/29/1 | Mailing List Third Party Advisory |
https://security.gentoo.org/glsa/202105-27 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20200122-0002/ | Third Party Advisory |
https://usn.ubuntu.com/4250-1/ | Third Party Advisory |
https://usn.ubuntu.com/4250-2/ | Third Party Advisory |
https://www.oracle.com/security-alerts/cpujan2020.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
History
No history.
Information
Published : 2020-01-15 17:15
Updated : 2024-02-28 17:28
NVD link : CVE-2020-2574
Mitre link : CVE-2020-2574
CVE.ORG link : CVE-2020-2574
JSON object : View
Products Affected
opensuse
- leap
mariadb
- mariadb
netapp
- oncommand_insight
- snapcenter
- oncommand_workflow_automation
- active_iq_unified_manager
oracle
- mysql
canonical
- ubuntu_linux
CWE