Description

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).

Remediation

References

CVE-2020-2574

Related Vulnerabilities

SharePoint CVE-2021-1716 Vulnerability (CVE-2021-1716)

Frontaccounting Other Vulnerability (CVE-2007-4279)

WordPress Plugin WP Accurate Form Data Multiple Vulnerabilities (1.2)

Oracle Database Server CVE-2016-0461 Vulnerability (CVE-2016-0461)

MongoDb Resource Management Errors Vulnerability (CVE-2013-3969)

Severity

Medium

Classification

CVE-2020-2574 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities