Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2023-22048

Опубликовано: 18 июл. 2023
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 3.1

Описание

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).

РелизСтатусПримечание
bionic

DNE

devel

not-affected

mysql only
esm-apps/noble

not-affected

mysql only
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

ignored

end of life, was needs-triage
mantic

not-affected

mysql only
noble

not-affected

mysql only

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/xenial

not-affected

mysql only
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

DNE

esm-apps/bionic

not-affected

mysql only
esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/focal

not-affected

mysql only
focal

not-affected

mysql only
jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

oracular

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/jammy

not-affected

mysql only
esm-infra/focal

DNE

focal

DNE

jammy

not-affected

mysql only
kinetic

ignored

end of life, was needs-triage
lunar

ignored

end of life, was needs-triage
mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

oracular

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

ignored

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

oracular

DNE

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support
devel

DNE

esm-infra/bionic

not-affected

8.x only
esm-infra/focal

DNE

esm-infra/xenial

not-affected

8.x only
focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

not-affected

8.0.34-0ubuntu0.20.04.1
focal

released

8.0.34-0ubuntu0.20.04.1
jammy

released

8.0.34-0ubuntu0.22.04.1
kinetic

ignored

end of life, was needed
lunar

released

8.0.34-0ubuntu0.23.04.1
mantic

released

8.0.34-0ubuntu2
noble

released

8.0.34-0ubuntu2
oracular

released

8.0.34-0ubuntu2

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/xenial

needs-triage

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

oracular

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-apps/xenial

needs-triage

esm-infra/focal

DNE

focal

DNE

jammy

DNE

kinetic

DNE

lunar

DNE

mantic

DNE

noble

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 32%
0.00116
Низкий

3.1 Low

CVSS3

Связанные уязвимости

redhat логотип

CVE-2023-22048

CVSS3: 3.1
redhat
почти 2 года назад

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).

nvd логотип

CVE-2023-22048

CVSS3: 3.1
nvd
почти 2 года назад

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).

debian логотип

CVE-2023-22048

CVSS3: 3.1
debian
почти 2 года назад

Vulnerability in the MySQL Server product of Oracle MySQL (component: ...

github логотип

GHSA-86fx-xhf4-vrcp

CVSS3: 3.1
github
почти 2 года назад

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).

fstec логотип

BDU:2023-03939

CVSS3: 3.1
fstec
почти 2 года назад

Уязвимость компонента Server:Pluggable Auth системы управления базами данных Oracle MySQL Serve, позволяющая нарушителю получить несанкционированный доступ к конфиденциальной информации

EPSS

Процентиль: 32%
0.00116
Низкий

3.1 Low

CVSS3

Уязвимость CVE-2023-22048