CVE-2020-2933

State: PUBLISHED · Published: 2020-04-15 · Updated: 2024-09-27 · Assigner: oracle

Description

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 5.1.48 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).

CWE

(none)

Affected

Oracle Corporation / MySQL Connectors — v=5.1.48 and prior [affected]

CVSS

3.0 score=2.2 severity=LOW CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L

References

https://www.oracle.com/security-alerts/cpuapr2020.html x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html mailing-list, x_refsource_MLIST
https://www.debian.org/security/2020/dsa-4703 vendor-advisory, x_refsource_DEBIAN
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/ vendor-advisory, x_refsource_FEDORA
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/ vendor-advisory, x_refsource_FEDORA
https://security.gentoo.org/glsa/202105-27 vendor-advisory, x_refsource_GENTOO

Source

cvelistV5-main/cves/2020/2xxx/CVE-2020-2933.json