CVE-2024-20981

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jan 16, 2024
Updated: Feb 2, 2024

Summary

CVE-2024-20981 is a vulnerability in the MySQL Server product of Oracle MySQL. It affects versions 8.0.35 and prior, as well as 8.2.0 and prior. This vulnerability can be easily exploited by a high privileged attacker with network access through multiple protocols, allowing them to compromise the MySQL Server. Successful attacks can result in unauthorized ability to cause a hang or frequently repeatable crash of the server, leading to a denial-of-service (DOS) situation. The CVSS 3.1 Base Score for this vulnerability is 4.9, indicating medium severity with availability impacts. A patch or update from Oracle is required to remediate this vulnerability.

Affected Products: tkNmD_, Z3R9gD, tkNmD-, Z2nole, r6Wi6e, r6Wi6f, lYKMY2, kTfW5V, YLUeA1, mYigth, YLUeA0, YLUeAz, YLUeAy, YLUeAx, YLUeAw, ejS_sg, dfvGVU, r6Wi6g, r6Wi6h, r6Wi6i, f2uUhN

Remediation: Apply the latest patch or update provided by Oracle MySQL to fix the vulnerability.

Potential Danger: The vulnerability allows attackers to compromise the MySQL server and potentially cause a denial-of-service situation by crashing or hanging the server repeatedly. This can have significant consequences for organizations relying on MySQL for their database management and can disrupt their operations until the issue is resolved.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20981 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options