cbcvebase.
CVE-2021-2021
published 2021-01-20

CVE-2021-2021: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily…

PriorityP427medium4.9CVSS 3.1
AVNACLPRHUINSUCNINAH
EPSS
10.01%
95.0th percentile
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Affected

29 ranges· showing 25
VendorProductVersion rangeFixed in
debianmysql-8.0< mysql-8.0 8.0.23-1 (sid)mysql-8.0 8.0.23-1 (sid)
fedoraprojectfedora
fedoraprojectfedora
giflib_projectgiflib>= 0 < 5.1.9-1ubuntu0.15.1.9-1ubuntu0.1
giflib_projectgiflib>= 0 < 5.1.9-2ubuntu0.15.1.9-2ubuntu0.1
giflib_projectgiflib>= 0 < 5.1.4-0.3~16.04.1+esm15.1.4-0.3~16.04.1+esm1
giflib_projectgiflib>= 0 < 5.1.4-2ubuntu0.1+esm15.1.4-2ubuntu0.1+esm1
github.comhashicorp_nomad>= 0 < 0.12.120.12.12
github.comhashicorp_nomad>= 1.0.0 < 1.0.51.0.5
inteloptimization_for_tensorflow>= 0 < 2.1.42.1.4
inteloptimization_for_tensorflow>= 2.2.0 < 2.2.32.2.3
inteloptimization_for_tensorflow>= 2.3.0 < 2.3.32.3.3
inteloptimization_for_tensorflow>= 2.4.0 < 2.4.22.4.2
msrccbl2_kernel_5.15.26.1-1_on_cbl_mariner_2.0
msrccm1_kernel_5.10.102.1-1_on_cbl_mariner_1.0
msrcmicrosoft_edge
msrcmicrosoft_sharepoint_enterprise_server_2013_service_pack_1
msrcmicrosoft_sharepoint_enterprise_server_2016
msrcmicrosoft_sharepoint_foundation_2010_service_pack_2
msrcmicrosoft_sharepoint_server_2019
msrcmysql-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrcmysql-8.0.26-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrcmysql-debuginfo-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrcmysql-debuginfo-8.0.26-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrcmysql-devel-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is in the MySQL Server Optimizer component; target high-privileged network-accessible MySQL Server instances running version 8.0.22 or prior for detection focus.
  • Attack vector is network-based over the MySQL Protocol with no authentication bypass required — monitor for repeated crash/hang patterns on MySQL Server processes initiated by high-privileged accounts.
  • ·MariaDB packages across Red Hat Enterprise Linux 6, 7, 8, OpenStack Platform 10/13, and Red Hat Software Collections are confirmed NOT affected — do not apply MySQL-specific mitigations to these packages.
  • ·Oracle's advisory notes the protocol as 'MySQL Protocol' but lists 'Remote exploit: No' alongside 'Affected versions: Network' — verify network exposure context carefully before assuming full remote exploitability.

CVSS provenance

nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvdv2.06.8MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:C
osv8.8HIGH
vendor_redhat8.0HIGH
vendor_msrc6.5MEDIUM
vendor_oracle6.1MEDIUM
vendor_debian4.9MEDIUM
vendor_cisco3.1
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.