Description
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N).
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-Cal 'id' Parameter SQL Injection (0.3)
WordPress Plugin Sermon Browser Multiple Cross-Site Scripting Vulnerabilities (0.45.15)
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (6.8.1)
Oracle Database Server Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5499)
Microsoft SQL Server CVE-2023-21705 Vulnerability (CVE-2023-21705)