CVE-2024-21185

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jul 16, 2024
Updated: Jul 19, 2024

Summary

CVE-2024-21185 is a newly disclosed vulnerability affecting Oracle MySQL Server versions 8.0.38, 8.4.1, and 9.0.0. This issue, located within the InnoDB component, is classified as easily exploitable, allowing high-privileged attackers with network access to cause a hang or frequent crashes in MySQL Server. The impact of these attacks can result in complete Denial of Service (DoS). The Common Vulnerabilities and Exposures (CVE) database assigns this vulnerability a base score of 4.9 under the CVSS 3.1 scoring system, focusing on availability. Attackers can exploit this vulnerability through multiple protocols, making it crucial for affected organizations to apply the necessary patches promptly to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share