Description
MySQL allows local users to modify passwords for arbitrary MySQL users via the GRANT privilege.
Remediation
References
Related Vulnerabilities
Jboss EAP Missing Authorization Vulnerability (CVE-2019-10184)
Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-1854)
Apache HTTP Server Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2019-0220)
WordPress Plugin Additional Variation Images for WooCommerce Cross-Site Scripting (1.1.28)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-2582)