CVE-2024-21218

Summary

CVE-2024-21218 is a vulnerability found in Oracle MySQL Server, specifically within the InnoDB component, affecting versions 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. This vulnerability allows high-privileged attackers with network access to exploit it via multiple protocols, potentially causing the MySQL Server to hang or crash repeatedly, resulting in a denial-of-service condition. The CVSS 3.1 Base Score for this vulnerability is 4.9, indicating a medium severity level primarily affecting availability without compromising confidentiality or integrity. Organizations are advised to remediate this issue by upgrading to newer versions of MySQL Server that are not affected by this vulnerability to mitigate potential risks. The attack complexity is classified as low, meaning that successful exploitation could occur with relative ease if preventative measures are not taken.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.