7.5

CVE-2002-1921

The default configuration of MySQL 3.20.32 through 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote attackers to connect to the database.

Data is provided by the National Vulnerability Database (NVD)
OracleMysql Version3.20.32a
OracleMysql Version3.22.26
OracleMysql Version3.22.27
OracleMysql Version3.22.28
OracleMysql Version3.22.29
OracleMysql Version3.22.30
OracleMysql Version3.22.32
OracleMysql Version3.23.2
OracleMysql Version3.23.3
OracleMysql Version3.23.4
OracleMysql Version3.23.5
OracleMysql Version3.23.8
OracleMysql Version3.23.9
OracleMysql Version3.23.10
OracleMysql Version3.23.23
OracleMysql Version3.23.24
OracleMysql Version3.23.25
OracleMysql Version3.23.26
OracleMysql Version3.23.27
OracleMysql Version3.23.28
OracleMysql Version3.23.28 Updategamma
OracleMysql Version3.23.29
OracleMysql Version3.23.30
OracleMysql Version3.23.31
OracleMysql Version3.23.34
OracleMysql Version3.23.36
OracleMysql Version3.23.37
OracleMysql Version3.23.38
OracleMysql Version3.23.39
OracleMysql Version3.23.40
OracleMysql Version3.23.41
OracleMysql Version3.23.42
OracleMysql Version3.23.43
OracleMysql Version3.23.44
OracleMysql Version3.23.45
OracleMysql Version3.23.46
OracleMysql Version3.23.47
OracleMysql Version3.23.48
OracleMysql Version3.23.49
OracleMysql Version3.23.50
OracleMysql Version3.23.51
OracleMysql Version3.23.52
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.71% 0.699
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P