Oracle

Mysql Server

260 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2021-22924

Exploit
  • EPSS 0.75%
  • Published 05.08.2021 21:15:11
  • Last modified 09.06.2025 15:15:24

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the invo...

5.3

CVE-2021-22925

Exploit
  • EPSS 0.38%
  • Published 05.08.2021 21:15:11
  • Last modified 21.11.2024 05:50:55

curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending `NEW_ENV` variables, libcurlcould be ...

7.5

CVE-2021-22926

Exploit
  • EPSS 0.51%
  • Published 05.08.2021 21:15:11
  • Last modified 21.11.2024 05:50:56

libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLCERT` option (`--cert` with the command line tool).When libcurl is built to use the macOS native TLS library Secure Trans...

7.5

CVE-2021-36222

  • EPSS 4.66%
  • Published 22.07.2021 18:15:23
  • Last modified 21.11.2024 06:13:20

ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return valu...

6.8

CVE-2021-2444

  • EPSS 0.15%
  • Published 21.07.2021 15:16:18
  • Last modified 21.11.2024 06:03:08

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

6.8

CVE-2021-2440

  • EPSS 0.15%
  • Published 21.07.2021 15:16:16
  • Last modified 21.11.2024 06:03:07

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols...

4

CVE-2021-2441

  • EPSS 0.27%
  • Published 21.07.2021 15:16:16
  • Last modified 21.11.2024 06:03:08

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4

CVE-2021-2437

  • EPSS 0.27%
  • Published 21.07.2021 15:16:09
  • Last modified 21.11.2024 06:03:07

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4.3

CVE-2021-2429

  • EPSS 8.49%
  • Published 21.07.2021 15:16:02
  • Last modified 21.11.2024 06:03:06

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4

CVE-2021-2427

  • EPSS 0.31%
  • Published 21.07.2021 15:16:00
  • Last modified 21.11.2024 06:03:06

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...