CVE-2024-21198

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 15, 2024

Summary

CVE-2024-21198 is a vulnerability affecting Oracle MySQL Server versions 8.0.39 and prior, 8.4.2 and prior, and 9.0.1 and prior, specifically within the DDL component. This vulnerability can be exploited by high-privileged attackers with network access through various protocols, potentially leading to a denial-of-service (DoS) condition where the MySQL Server may hang or crash repeatedly. The CVSS 3.1 Base Score for this vulnerability is 4.9, indicating a medium severity level with significant availability impacts. To remediate this issue, it is recommended that organizations update their MySQL Server installations to versions beyond the affected ones as specified by Oracle's security alerts. Failure to address this vulnerability may expose organizations to service disruptions and operational challenges due to server downtime.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share