CVE-2000-0981 — Oracle Mysql vulnerability

2 documents2 sources

Severity

7.2HIGHNVD

EPSS

1.1%

top 22.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Mysql

Timeline

PublishedDec 19

Latest updateApr 30

Description

MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDoracle/mysql4 versions+3

🔴Vulnerability Details

GHSA

GHSA-fx38-6jp6-wf65: MySQL Database Engine uses a weak authentication method which leaks information that could be used by a remote attacker to recover the password↗2022-04-30

▶