CVE-2024-21134
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2024-21134 is a vulnerability affecting Oracle MySQL Server versions 8.0.37 and prior, as well as 8.4.0 and prior. This easily exploitable issue lies in the Connection Handling component. A low-privileged attacker with network access can exploit this vulnerability using multiple protocols. Consequences of successful attacks include a partial denial of service (partial DOS) of MySQL Server. The vulnerability has been given a base score of 4.3 (Availability impacts) according to the Common Vulnerability Scoring System (CVSS) version 3.1. The CVSS Vector is (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Oracle MySQL Server
- MySQL Server
Affected Vendors
- MySQL AB
- BonqDAO