- EPSS 0.12%
- Published 19.01.2022 12:15:10
- Last modified 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols...
CVE-2022-21253
- EPSS 0.16%
- Published 19.01.2022 12:15:10
- Last modified 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...
CVE-2022-21254
- EPSS 0.39%
- Published 19.01.2022 12:15:10
- Last modified 21.11.2024 06:44:12
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple pr...
CVE-2022-21256
- EPSS 0.16%
- Published 19.01.2022 12:15:10
- Last modified 21.11.2024 06:44:13
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v...
CVE-2021-4044
- EPSS 22.16%
- Published 14.12.2021 19:15:07
- Last modified 21.11.2024 06:36:47
Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That function may return a negative return value to indicate an internal error (for example out of memory). Such a negative return ...
- EPSS 94.36%
- Published 10.12.2021 10:15:09
- Last modified 08.08.2025 18:52:00
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...
CVE-2021-43797
- EPSS 0.18%
- Published 09.12.2021 19:15:07
- Last modified 21.11.2024 06:29:48
Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. Netty prior to version 4.1.71.Final skips control chars when they are present at the beginning / en...
CVE-2021-22096
- EPSS 0.22%
- Published 28.10.2021 16:15:07
- Last modified 21.11.2024 05:49:31
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.
- EPSS 0.15%
- Published 20.10.2021 11:17:18
- Last modified 21.11.2024 06:12:43
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...
- EPSS 0.15%
- Published 20.10.2021 11:17:18
- Last modified 21.11.2024 06:12:43
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...