Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).

Remediation

References

CVE-2023-22113

Related Vulnerabilities

WordPress Plugin WP-PostRatings Cross-Site Scripting (1.50)

Oracle Application Server CVE-2006-0274 Vulnerability (CVE-2006-0274)

WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.1.23)

WordPress Plugin Easy Cookies Policy Cross-Site Scripting (1.6.2)

Oracle Database Server CVE-2014-4297 Vulnerability (CVE-2014-4297)

Severity

Low

Classification

CVE-2023-22113 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Tags

Missing Update Known Vulnerabilities