CVE-2019-2481

12 documents7 sources
Severity
4.9MEDIUM
EPSS
0.1%
top 66.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Mariadb MariadbOracle MysqlOracle Corporation Mysql Server+6 more
Timeline
PublishedJan 16
Latest updateMay 13

Description

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Sc

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 1.2 | Impact: 3.6

Affected Packages6 packages

CVEListV5oracle_corporation/mysql_server5.6.42 and prior, 5.7.24 and prior, 8.0.13 and prior+2
NVDoracle/mysql5.6.05.6.42+2
Ubuntumysql-5.7< 5.7.25-0ubuntu0.16.04.2+1
NVDmariadb/mariadb5.5.05.5.37+1
Ubuntumariadb-5.5< 5.5.37-0ubuntu0.14.04.1

Also affects: Ubuntu Linux 16.04, 18.04, 18.10, Enterprise Linux 8.0, 8.1, 8.2, 8.4, 8.6

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

3
GHSA
GHSA-6qj5-hrrf-qwgh: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2022-05-13
OSV
CVE-2019-2481: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2019-01-16
CVEList
CVE-2019-2481: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2019-01-16

📋Vendor Advisories

2
Ubuntu
MySQL vulnerabilities2019-01-23
Red Hat
mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2019)2019-01-15

💬Community

6
Bugzilla
CVE-2019-2420 CVE-2019-2434 CVE-2019-2436 CVE-2019-2455 CVE-2019-2481 CVE-2019-2482 CVE-2019-2486 CVE-2019-2494 CVE-2019-2495 CVE-2019-2502 CVE-2019-2503 CVE-2019-2507 CVE-2019-2510 CVE-2019-2528 ... 2019-01-16
Bugzilla
CVE-2019-2420 CVE-2019-2434 CVE-2019-2455 CVE-2019-2481 CVE-2019-2482 CVE-2019-2486 CVE-2019-2503 CVE-2019-2507 CVE-2019-2510 CVE-2019-2528 CVE-2019-2529 CVE-2019-2531 CVE-2019-2532 CVE-2019-2534 CVE-2019-01-16
Bugzilla
CVE-2019-2420 CVE-2019-2434 CVE-2019-2455 CVE-2019-2481 CVE-2019-2482 CVE-2019-2486 CVE-2019-2503 CVE-2019-2507 CVE-2019-2510 CVE-2019-2528 CVE-2019-2529 CVE-2019-2531 CVE-2019-2532 CVE-2019-2534 ... 2019-01-16
Bugzilla
CVE-2019-2420 CVE-2019-2434 CVE-2019-2436 CVE-2019-2455 CVE-2019-2481 CVE-2019-2482 CVE-2019-2486 CVE-2019-2494 CVE-2019-2495 CVE-2019-2502 CVE-2019-2503 CVE-2019-2507 CVE-2019-2510 CVE-2019-2528 ... 2019-01-16
Bugzilla
CVE-2019-2481 mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2019)2019-01-16