CVE-2019-2581Oracle Mysql vulnerability

14 documents7 sources
Severity
4.9MEDIUMNVD
EPSS
0.4%
top 38.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Oracle MysqlOracle Corporation Mysql ServerCanonical Ubuntu Linux+6 more
Timeline
PublishedApr 23
Latest updateMay 24

Description

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availabil

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 1.2 | Impact: 3.6

Affected Packages3 packages

CVEListV5oracle_corporation/mysql_server5.7.25 and prior, 8.0.15 and prior+1
NVDoracle/mysql5.7.05.7.25+1

Also affects: Fedora 29, 30, Ubuntu Linux 16.04, 18.04, 18.10, 19.04, Enterprise Linux 8.0, 8.1, 8.2, 8.4, 8.6

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

3
GHSA
GHSA-wr89-9f9v-j9cp: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2022-05-24
CVEList
CVE-2019-2581: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2019-04-23
OSV
CVE-2019-2581: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer)2019-04-23

📋Vendor Advisories

2
Ubuntu
MySQL vulnerabilities2019-04-29
Red Hat
mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2019)2019-04-16

💬Community

8
Bugzilla
CVE-2019-2581 mysql:8.0/community-mysql: mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2019) [fedora-28]2019-05-06
Bugzilla
CVE-2019-2580 CVE-2019-2581 CVE-2019-2584 CVE-2019-2585 CVE-2019-2587 CVE-2019-2589 CVE-2019-2592 CVE-2019-2593 CVE-2019-2596 CVE-2019-2606 CVE-2019-2607 CVE-2019-2614 CVE-2019-2617 CVE-2019-2620 ... 2019-05-06
Bugzilla
CVE-2019-2580 CVE-2019-2581 CVE-2019-2584 CVE-2019-2585 CVE-2019-2587 CVE-2019-2589 CVE-2019-2592 CVE-2019-2593 CVE-2019-2596 CVE-2019-2606 CVE-2019-2607 CVE-2019-2614 CVE-2019-2617 CVE-2019-2620 ... 2019-05-06
Bugzilla
CVE-2019-2581 mysql:5.7/community-mysql: mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2019) [fedora-29]2019-05-06
Bugzilla
CVE-2019-2581 CVE-2019-2592 CVE-2019-2614 CVE-2019-2627 CVE-2019-2628 CVE-2019-2683 community-mysql: various flaws [fedora-28]2019-05-06
CVE-2019-2581 — Oracle Mysql vulnerability | cvebase