Description

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 8.0.15 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.1 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

Remediation

References

CVE-2019-2634

Related Vulnerabilities

Dot CMS Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2020-18875)

Liferay DXP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2024-25143)

WordPress Plugin SE HTML5 Album Audio Player Directory Traversal (1.1.0)

WordPress Plugin NextMove Lite-Thank You Page for WooCommerce Security Bypass (2.17.0)

WordPress Plugin WooCommerce Conversion Tracking Cross-Site Request Forgery (2.0.4)

Severity

Medium

Classification

CVE-2019-2634 CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities