Description

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

Remediation

References

CVE-2021-2011

Related Vulnerabilities

WordPress Plugin AdPlugg WordPress Ad Cross-Site Scripting (1.1.33)

WordPress Plugin cformsII SQL Injection (14.12.3)

WordPress Plugin WP BaiDu Submit Cross-Site Scripting (1.2.1)

WordPress Plugin Revive Old Post-Auto Post to Social Media 'cat' Parameter SQL Injection (3.2.5)

Oracle Database Server CVE-2011-0882 Vulnerability (CVE-2011-0882)

Severity

Medium

Classification

CVE-2021-2011 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities