CVE-2024-21015
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-21015 is a vulnerability affecting MySQL Server versions 8.0.34 and prior, as well as 8.3.0 and prior (Oracle MySQL, Server: DML component). This easily exploitable issue allows high privileged attackers with network access to cause a hang or frequent crashes of MySQL Server, resulting in denial-of-service (DoS). Moreover, attackers can gain unauthorized update, insert, or delete access to MySQL Server data. The Base Score is 5.5, with high impacts on Integrity and Availability. Attack vectors include network access, making this a significant security concern.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Oracle MySQL Server
Affected Vendors
- BonqDAO