Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).

Remediation

References

CVE-2021-35623

Related Vulnerabilities

IBM RTC Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-0748)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5326)

Apache HTTP Server Resource Management Errors Vulnerability (CVE-2014-3523)

Apache HTTP Server CVE-2019-0190 Vulnerability (CVE-2019-0190)

WordPress Plugin Shield Security-Smart Bot Blocking & Intrusion Prevention Security Cross-Site Scripting (18.5.7)

Severity

Low

Classification

CVE-2021-35623

Tags

Missing Update Known Vulnerabilities