CVE-2024-21207
CVSS 3.1 Score 4.9 of 10 (medium)
Details
Summary
CVE-2024-21207 is a newly disclosed vulnerability affecting the InnoDB component of Oracle MySQL server versions 8.0.38 and prior, 8.4.1 and prior, and 9.0.1 and prior. This easily exploitable issue allows high-privileged attackers with network access to compromise the MySQL Server, leading to a hang or frequent crashes (complete Denial of Service). The vulnerability has a base score of 4.9 under CVSS 3.1 and falls under the Availability category. Attackers can leverage multiple protocols to exploit this issue, making it a significant threat to organizations running vulnerable MySQL Server instances.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- MySQL