Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).

Remediation

References

CVE-2021-35623

Related Vulnerabilities

WordPress Plugin Social Share Icons & Social Share Buttons Cross-Site Scripting (3.0.5)

Beego Framework Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2019-16354)

concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-5108)

WordPress Plugin Social Like Box and Page by WpDevArt Cross-Site Scripting (0.8.40)

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2015-8103)

Severity

Low

Classification

CVE-2021-35623

Tags

Missing Update Known Vulnerabilities