CVE-2021-2010

CVSS v3.1 4.2 (Medium)

CVSS v2.0 4.9 (Medium)

EPSS 0.38 % (74^th)

Affected Products 5

Advisories 9

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Client accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Client. CVSS 3.1 Base Score 4.2 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L).

Weaknesses

CWE-NVD-noinfo

CVE Status: PUBLISHED
CNA: Oracle
Published Date: 2021-01-20 15:15:45
(3 years ago)
Updated Date: 2023-11-07 03:32:46
(10 months ago)

Affected Products

Fedoraproject

Fedora

Netapp

Oracle

Mysql

Configuration #1

	CPE23	From	Up To
Oracle Mysql from 5.6.0 version and 5.6.50 and prior versions	cpe:2.3:a:oracle:mysql	>= 5.6.0	<= 5.6.50
Oracle Mysql from 5.7.0 version and 5.7.32 and prior versions	cpe:2.3:a:oracle:mysql	>= 5.7.0	<= 5.7.32
Oracle Mysql from 8.0.0 version and 8.0.22 and prior versions	cpe:2.3:a:oracle:mysql	>= 8.0.0	<= 8.0.22

Configuration #2

		CPE23	From	Up To
	Fedoraproject Fedora 32	cpe:2.3:o:fedoraproject:fedora:32
	Fedoraproject Fedora 33	cpe:2.3:o:fedoraproject:fedora:33

Configuration #3

		CPE23	From	Up To
	Netapp Active Iq Unified Manager for Vmware Vsphere	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vmware_vsphere
	Netapp Active Iq Unified Manager for Windows	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::windows
	Netapp Oncommand Insight	cpe:2.3:a:netapp:oncommand_insight:-
	Netapp Oncommand Workflow Automation	cpe:2.3:a:netapp:oncommand_workflow_automation:-