← Zuruck zu CVEs

CVE-2020-14641

MEDIUM

4.9

Beschreibung

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).

CVE Details

CVSS v3.1 Bewertung4.9

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienHIGH

BenutzerinteraktionNONE

Veroffentlicht7/15/2020

Zuletzt geandert11/21/2024

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

canonical:ubuntu_linuxnetapp:snapcenteroracle:mysql

Referenzen

https://security.gentoo.org/glsa/202105-27(secalert_us@oracle.com)

https://security.netapp.com/advisory/ntap-20200717-0004/(secalert_us@oracle.com)

https://usn.ubuntu.com/4441-1/(secalert_us@oracle.com)

https://www.oracle.com/security-alerts/cpujul2020.html(secalert_us@oracle.com)

https://security.gentoo.org/glsa/202105-27(af854a3a-2127-422b-91ae-364da2661108)

https://security.netapp.com/advisory/ntap-20200717-0004/(af854a3a-2127-422b-91ae-364da2661108)

https://usn.ubuntu.com/4441-1/(af854a3a-2127-422b-91ae-364da2661108)

https://www.oracle.com/security-alerts/cpujul2020.html(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.