CVE-2022-21363

Опубликовано: 19 янв. 2022

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6

CVSS3: 6.6

Описание

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.1 Base Score 6.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H).

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
esm-apps/bionic	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	needs-triage
trusty	ignored	end of standard support
trusty/esm	ignored	end of ESM support, was needs-triage
upstream	needs-triage
xenial	ignored	end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 61%

0.00416

Низкий

6 Medium

CVSS2

6.6 Medium

CVSS3

Связанные уязвимости

CVE-2022-21363

CVSS3: 6.6

redhat

около 4 лет назад

CVE-2022-21363

CVSS3: 6.6

nvd

около 4 лет назад

CVE-2022-21363

CVSS3: 6.6

msrc

около 4 лет назад

Описание отсутствует

CVE-2022-21363

CVSS3: 6.6

debian

около 4 лет назад

Vulnerability in the MySQL Connectors product of Oracle MySQL (compone ...

GHSA-g76j-4cxx-23h9

CVSS3: 6.6

github

около 4 лет назад

Improper Handling of Insufficient Permissions or Privileges in MySQL Connectors Java

EPSS

Процентиль: 61%

0.00416

Низкий

6 Medium

CVSS2

6.6 Medium

CVSS3

CVE-2022-21363

Описание

Пакет mysql-connector-java

Ссылки на источники

Связанные уязвимости