CVE-2021-2021
published 2021-01-20CVE-2021-2021: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily…
PriorityP427medium4.9CVSS 3.1
AVNACLPRHUINSUCNINAH
EPSS
10.01%
95.0th percentile
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | mysql-8.0 | < mysql-8.0 8.0.23-1 (sid) | mysql-8.0 8.0.23-1 (sid) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| giflib_project | giflib | >= 0 < 5.1.9-1ubuntu0.1 | 5.1.9-1ubuntu0.1 |
| giflib_project | giflib | >= 0 < 5.1.9-2ubuntu0.1 | 5.1.9-2ubuntu0.1 |
| giflib_project | giflib | >= 0 < 5.1.4-0.3~16.04.1+esm1 | 5.1.4-0.3~16.04.1+esm1 |
| giflib_project | giflib | >= 0 < 5.1.4-2ubuntu0.1+esm1 | 5.1.4-2ubuntu0.1+esm1 |
| github.com | hashicorp_nomad | >= 0 < 0.12.12 | 0.12.12 |
| github.com | hashicorp_nomad | >= 1.0.0 < 1.0.5 | 1.0.5 |
| intel | optimization_for_tensorflow | >= 0 < 2.1.4 | 2.1.4 |
| intel | optimization_for_tensorflow | >= 2.2.0 < 2.2.3 | 2.2.3 |
| intel | optimization_for_tensorflow | >= 2.3.0 < 2.3.3 | 2.3.3 |
| intel | optimization_for_tensorflow | >= 2.4.0 < 2.4.2 | 2.4.2 |
| msrc | cbl2_kernel_5.15.26.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_kernel_5.10.102.1-1_on_cbl_mariner_1.0 | — | — |
| msrc | microsoft_edge | — | — |
| msrc | microsoft_sharepoint_enterprise_server_2013_service_pack_1 | — | — |
| msrc | microsoft_sharepoint_enterprise_server_2016 | — | — |
| msrc | microsoft_sharepoint_foundation_2010_service_pack_2 | — | — |
| msrc | microsoft_sharepoint_server_2019 | — | — |
| msrc | mysql-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | mysql-8.0.26-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| msrc | mysql-debuginfo-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | mysql-debuginfo-8.0.26-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| msrc | mysql-devel-8.0.26-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is in the MySQL Server Optimizer component; target high-privileged network-accessible MySQL Server instances running version 8.0.22 or prior for detection focus. ↗
- →Attack vector is network-based over the MySQL Protocol with no authentication bypass required — monitor for repeated crash/hang patterns on MySQL Server processes initiated by high-privileged accounts. ↗
- ·MariaDB packages across Red Hat Enterprise Linux 6, 7, 8, OpenStack Platform 10/13, and Red Hat Software Collections are confirmed NOT affected — do not apply MySQL-specific mitigations to these packages. ↗
- ·Oracle's advisory notes the protocol as 'MySQL Protocol' but lists 'Remote exploit: No' alongside 'Affected versions: Network' — verify network exposure context carefully before assuming full remote exploitability. ↗
CVSS provenance
nvdv3.14.9MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
nvdv2.06.8MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:C
osv8.8HIGH
vendor_redhat8.0HIGH
vendor_msrc6.5MEDIUM
vendor_oracle6.1MEDIUM
vendor_debian4.9MEDIUM
vendor_cisco3.1
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg
vendor_redhat·2024-06-19·CVSS 5.5
CVE-2021-47607 [MEDIUM] kernel: bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg
kernel: bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg
The implementation of BPF_CMPXCHG on a high level has the following parameters:
.-[old-val] .-[new-val]
BPF_R0 = cmpxchg{32,64}(DST_REG + insn->off, BPF_R0, SRC_REG)
`-[mem-loc] `-[old-val]
Given a BPF insn can only have two registers (dst, src), the R0 is fixed and
used as an auxilliary register for input (old value) as well as output (returning
old value from memory location). While the verifier performs a number of safety
checks, it misses to reject unprivileged programs where R0 contains a pointer as
old value.
Through brute-forcing it takes about ~16sec on my machine to leak a kernel p
Red Hat
kernel: gfs2: Fix use-after-free in gfs2_glock_shrink_scan
vendor_redhat·2024-05-21·CVSS 7.8
CVE-2021-47254 [HIGH] CWE-416 kernel: gfs2: Fix use-after-free in gfs2_glock_shrink_scan
kernel: gfs2: Fix use-after-free in gfs2_glock_shrink_scan
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Fix use-after-free in gfs2_glock_shrink_scan
The GLF_LRU flag is checked under lru_lock in gfs2_glock_remove_from_lru() to
remove the glock from the lru list in __gfs2_glock_put().
On the shrink scan path, the same flag is cleared under lru_lock but because
of cond_resched_lock(&lru_lock) in gfs2_dispose_glock_lru(), progress on the
put side can be made without deleting the glock from the lru list.
Keep GLF_LRU across the race window opened by cond_resched_lock(&lru_lock) to
ensure correct behavior on both sides - clear GLF_LRU after list_del under
lru_lock.
A vulnerability was found in Linux kernel's GFS2 file system, in the gfs2_glock_shrink_scan function
Red Hat
kernel: net: cdc_eem: fix tx fixup skb leak
vendor_redhat·2024-05-21·CVSS 5.5
CVE-2021-47236 [MEDIUM] CWE-402 kernel: net: cdc_eem: fix tx fixup skb leak
kernel: net: cdc_eem: fix tx fixup skb leak
In the Linux kernel, the following vulnerability has been resolved:
net: cdc_eem: fix tx fixup skb leak
when usbnet transmit a skb, eem fixup it in eem_tx_fixup(),
if skb_copy_expand() failed, it return NULL,
usbnet_start_xmit() will have no chance to free original skb.
fix it by free orginal skb in eem_tx_fixup() first,
then check skb clone status, if failed, return NULL to usbnet.
Package: kernel (Red Hat Enterprise Linux 6) - Out of support scope
Package: kernel (Red Hat Enterprise Linux 7) - Out of support scope
Package: kernel-rt (Red Hat Enterprise Linux 7) - Out of support scope
Package: kernel (Red Hat Enterprise Linux 9) - Not affected
Package: kernel-rt (Red Hat Enterprise Linux 9) - Not affected
Microsoft
The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction which allows local users to obtain potent
vendor_msrc·2022-02-08·CVSS 5.5
CVE-2021-45402 [MEDIUM] CWE-668 The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction which allows local users to obtain potent
The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction which allows local users to obtain potentially sensitive address information aka a "pointer leak."
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact
Red Hat
vim: Heap use-after-free in ml_append_int function
vendor_redhat·2021-11-19·CVSS 8.0
CVE-2021-3968 [HIGH] CWE-119 vim: Heap use-after-free in ml_append_int function
vim: Heap use-after-free in ml_append_int function
vim is vulnerable to Heap-based Buffer Overflow
A flaw was found in vim. A possible heap use-after-free vulnerability could allow an attacker to input a specially crafted file leading to a crash or code execution. The highest threat from this vulnerability is to system availability.
Mitigation: Do not run untrusted vim scripts with -s {scriptin} as it is never safe to do so.
Package: rhacm2/openshift-hive-rhel8 (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: vim (Red Hat Enterprise Linux 6) - Not affected
Package: vim (Red Hat Enterprise Linux 7) - Not affected
Package: vim (Red Hat Enterprise Linux 8) - Not affected
Package: vim (Red Hat Enterprise Linux 9) - Fix deferred
Oracle
Oracle Oracle Hyperion Risk Matrix: Hyperion Planning (jQuery) — CVE-2019-11358
vendor_oracle·2021-10-15·CVSS 6.1
CVE-2019-11358 [MEDIUM] Oracle Oracle Hyperion Risk Matrix: Hyperion Planning (jQuery) — CVE-2019-11358
Oracle Oracle Hyperion Risk Matrix: Hyperion Planning (jQuery) vulnerability
CVE: CVE-2019-11358
CVSS: 6.1
Protocol: HTTP
Remote exploit: Yes
Affected versions: Network
Advisory: cpuoct2021 (OCT 2021)
Microsoft
Chromium: CVE-2021-30584 Incorrect security UI in Downloads
vendor_msrc·2021-07-13·CVSS 6.5
CVE-2021-30584 [MEDIUM] Chromium: CVE-2021-30584 Incorrect security UI in Downloads
Chromium: CVE-2021-30584 Incorrect security UI in Downloads
Description: This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.
FAQ: Why is this Chrome CVE included in the Security Update Guide?
The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based). It is being documented in the Security Update Guide to announce that the latest version of Microsoft Edge (Chromium-based) is no longer vulnerable. Please see Security Update Guide Supports CVEs Assigned by Industry Partners for more information.
How can I see the version of the browser?
In your Microsoft Edge browser, click on the 3 dots (...)
Red Hat
ImageMagick: heap-based buffer overflow in ReadTIFFImage() in coders/tiff.c
vendor_redhat·2021-05-27·CVSS 7.5
CVE-2021-3610 [HIGH] CWE-787 ImageMagick: heap-based buffer overflow in ReadTIFFImage() in coders/tiff.c
ImageMagick: heap-based buffer overflow in ReadTIFFImage() in coders/tiff.c
A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
A heap-based buffer overflow vulnerability was found in ImageMagick in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
Statement: All versions of ImageMagick shipped in Red Hat Enterprise Linux 5, 6, and 7 are not affected by this flaw as they do not contain vulnerable code. The vulnerable code was introduced in a subsequent version of ImageMagick.
Package: Imag
Microsoft
Microsoft SharePoint Denial of Service Update
vendor_msrc·2021-04-13·CVSS 5.0
CVE-2021-28450 [MEDIUM] Microsoft SharePoint Denial of Service Update
Microsoft SharePoint Denial of Service Update
Microsoft Office SharePoint: Microsoft Office SharePoint
Microsoft: Microsoft
Impact: Denial of Service
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Reference: https://www.microsoft.com/downloads/details.aspx?familyid=dd0af276-336a-4fce-9e7f-19d1f7d04140
Reference: https://www.microsoft.com/downloads/details.aspx?familyid=618323ea-078a-4f01-a48c-1831d9aa9f38
Reference: https://www.microsoft.com/downloads/details.aspx?familyid=a2ab05a0-ea8b-4dfd-978f-609c4705dfd2
Reference: https://support.microsoft.com/help/4504716
Reference: https://www.microsoft.com/downloads/details.aspx?familyid=7f8a5a28-c7ef-4cee-a4f5-700357986509
Red Hat
kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c
vendor_redhat·2021-03-15·CVSS 5.5
CVE-2021-29646 [MEDIUM] CWE-20 kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c
kernel: improper input validation in tipc_nl_retrieve_key function in net/tipc/node.c
An issue was discovered in the Linux kernel before 5.11.11. tipc_nl_retrieve_key in net/tipc/node.c does not properly validate certain data sizes, aka CID-0217ed2848e8.
A flaw buffer overflow in the Linux kernel TIPC protocol functionality was found in the way user uses protocol with encryption enabled. A local user could use this flaw to crash the system.
Package: kernel (Red Hat Enterprise Linux 6) - Not affected
Package: kernel (Red Hat Enterprise Linux 7) - Not affected
Package: kernel-alt (Red Hat Enterprise Linux 7) - Not affected
Package: kernel-rt (Red Hat Enterprise Linux 7) - Not affected
Package: kernel (Red Hat Enterprise Linux 9) - Not affected
Ubuntu
MySQL vulnerabilities
vendor_ubuntu·2021-02-01
CVE-2021-2088 MySQL vulnerabilities
Title: MySQL vulnerabilities
Summary: Several security issues were fixed in MySQL.
Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.
MySQL has been updated to 8.0.23 in Ubuntu 20.04 LTS and Ubuntu 20.10.
Ubuntu 16.04 LTS and Ubuntu 18.04 LTS have been updated to MySQL 5.7.33.
In addition to security fixes, the updated packages contain bug fixes, new
features, and possibly incompatible changes.
Please see the following for more information:
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-33.html
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-23.html
https://www.oracle.com/security-alerts/cpujan2021.html
Instructions: This update uses a new upstream release, which includes additional bug
fixes
Red Hat
mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)
vendor_redhat·2021-01-19·CVSS 4.9
CVE-2021-2021 [MEDIUM] mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)
mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2021)
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Package: mysql (Red Hat Enterprise Linux 6) - Not affected
Package: mariadb (Red Hat Enterprise Linux 7) - Not affected
Package: mariadb:10.3/mariadb (Red Hat Enterprise Linux 8) -
Oracle
Oracle Oracle MySQL Risk Matrix: Server: Optimizer — CVE-2021-2021
vendor_oracle·2021-01-15·CVSS 4.9
CVE-2021-2021 [MEDIUM] Oracle Oracle MySQL Risk Matrix: Server: Optimizer — CVE-2021-2021
Oracle Oracle MySQL Risk Matrix: Server: Optimizer vulnerability
CVE: CVE-2021-2021
CVSS: 4.9
Protocol: MySQL Protocol
Remote exploit: No
Affected versions: Network
Advisory: cpujan2021 (JAN 2021)
Microsoft
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privil
vendor_msrc·2021-01-12·CVSS 4.9
CVE-2021-2021 [MEDIUM] Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privil
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to
Debian
CVE-2021-2021: mysql-8.0 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Op...
vendor_debian·2021·CVSS 4.9
CVE-2021-2021 [MEDIUM] CVE-2021-2021: mysql-8.0 - Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Op...
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Scope: local
sid: resolved (fixed in 8.0.23-1)
Cisco
Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities
vendor_cisco·CVSS 3.1
CVE-2021-1200 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities
CVE-2021-1200: Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities
Multiple vulnerabilities in the Universal Plug and Play (UPnP) service and the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow a remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. For more information about these vulnerabilities, see the
CVSS: 3.1
CWE: CWE-121, CWE-121
Bug IDs: CSCvv65098, CSCvv69398, CSCvv71463, CSCvv65098, CSCvv69398
OSV
giflib vulnerabilities
osv·2024-06-10·CVSS 8.8
CVE-2021-40633 giflib vulnerabilities
giflib vulnerabilities
It was discovered that GIFLIB incorrectly handled certain GIF files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2021-40633, CVE-2022-28506, CVE-2023-39742)
GHSA
GHSA-89wm-w7vg-fqcp: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer)
ghsa_unreviewed·2022-05-24
CVE-2021-2021 [MEDIUM] GHSA-89wm-w7vg-fqcp: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer)
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
GHSA
yetiforcecrm is vulnerable to Cross-site Scripting
ghsa·2021-12-17
CVE-2021-4121 [MEDIUM] CWE-79 yetiforcecrm is vulnerable to Cross-site Scripting
yetiforcecrm is vulnerable to Cross-site Scripting
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting').
GHSA
Improper network isolation in Hashicorp Nomad
ghsa·2021-06-24
CVE-2021-32575 [MEDIUM] CWE-1100 Improper network isolation in Hashicorp Nomad
Improper network isolation in Hashicorp Nomad
HashiCorp Nomad and Nomad Enterprise up to version 1.0.4 bridge networking mode allows ARP spoofing from other bridged tasks on the same node. Fixed in 0.12.12, 1.0.5, and 1.1.0 RC1.
GHSA
Invalid validation in `SparseMatrixSparseCholesky`
ghsa·2021-05-21
CVE-2021-29530 [LOW] CWE-476 Invalid validation in `SparseMatrixSparseCholesky`
Invalid validation in `SparseMatrixSparseCholesky`
### Impact
An attacker can trigger a null pointer dereference by providing an invalid `permutation` to `tf.raw_ops.SparseMatrixSparseCholesky`:
```python
import tensorflow as tf
import numpy as np
from tensorflow.python.ops.linalg.sparse import sparse_csr_matrix_ops
indices_array = np.array([[0, 0]])
value_array = np.array([-10.0], dtype=np.float32)
dense_shape = [1, 1]
st = tf.SparseTensor(indices_array, value_array, dense_shape)
input = sparse_csr_matrix_ops.sparse_tensor_to_csr_sparse_matrix(
st.indices, st.values, st.dense_shape)
permutation = tf.constant([], shape=[1, 0], dtype=tf.int32)
tf.raw_ops.SparseMatrixSparseCholesky(input=input, permutation=permutation, type=tf.float32)
```
This is because the [implementation](https://
OSV
CVE-2021-2021: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer)
osv·2021-01-20·CVSS 4.9
CVE-2021-2021 [MEDIUM] CVE-2021-2021: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer)
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
Suricata
ET EXPLOIT EyesOfNetwork Generate API Key SQLi (CVE-2020-8656)
suricata·2021-11-01·CVSS 9.8
CVE-2020-8657 [CRITICAL] ET EXPLOIT EyesOfNetwork Generate API Key SQLi (CVE-2020-8656)
ET EXPLOIT EyesOfNetwork Generate API Key SQLi (CVE-2020-8656)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET EXPLOIT EyesOfNetwork Generate API Key SQLi (CVE-2020-8656)"; flow:established,to_server; http.uri; content:"/eonapi/getApiKey"; fast_pattern; content:"username="; nocase; startswith; pcre:"/^[^&=]*(?:union|select)/Ri"; reference:url,www.exploit-db.com/exploits/48169; reference:cve,2020-8657; reference:cve,2020-8656; classtype:attempted-admin; sid:2034310; rev:1; metadata:attack_target Server, created_at 2021_11_01, cve CVE_2020_8656, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Exploit, updated_at 2021_11_01, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_id T1190, mitre_technique_name Exp
Suricata
ET DOS Possible Microsoft Windows HTTP2 Reset Flood Denial of Service Inbound (CVE-2019-9514)
suricata·2021-10-04·CVSS 7.5
CVE-2019-9514 [HIGH] ET DOS Possible Microsoft Windows HTTP2 Reset Flood Denial of Service Inbound (CVE-2019-9514)
ET DOS Possible Microsoft Windows HTTP2 Reset Flood Denial of Service Inbound (CVE-2019-9514)
Rule: alert tcp-pkt any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET DOS Possible Microsoft Windows HTTP2 Reset Flood Denial of Service Inbound (CVE-2019-9514)"; flow:established,to_server; dsize:9; content:"|00 00 00 01 04 00 00 00|"; startswith; fast_pattern; threshold:type threshold, count 45, seconds 60, track by_src; reference:cve,2019-9514; classtype:denial-of-service; sid:2034093; rev:1; metadata:attack_target Server, created_at 2021_10_04, cve CVE_2019_9514, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Exploit, updated_at 2021_10_04, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_id T1190, mitre_technique_name Expl
Suricata
ET EXPLOIT VisualDoor Sonicwall SSL VPN Exploit Attempt
suricata·2021-01-25
CVE-2014-6271 ET EXPLOIT VisualDoor Sonicwall SSL VPN Exploit Attempt
ET EXPLOIT VisualDoor Sonicwall SSL VPN Exploit Attempt
Rule: alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET EXPLOIT VisualDoor Sonicwall SSL VPN Exploit Attempt"; flow:established,to_server; http.uri; content:"/cgi-bin/jarrewrite.sh"; endswith; fast_pattern; http.user_agent; content:"|28 29 20 7b|"; reference:url,darrenmartyn.ie/2021/01/24/visualdoor-sonicwall-ssl-vpn-exploit/; reference:cve,2014-6271; classtype:attempted-admin; sid:2031543; rev:2; metadata:attack_target Client_Endpoint, created_at 2021_01_25, cve CVE_2014_6271, deployment Perimeter, deployment SSLDecrypt, performance_impact Low, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_01_25;)
Nuclei
Adobe ColdFusion - Access Control Bypass
nuclei·CVSS 7.5
CVE-2023-38205 [HIGH] Adobe ColdFusion - Access Control Bypass
Adobe ColdFusion - Access Control Bypass
There is an access control bypass vulnerability in Adobe ColdFusion versions 2023 Update 2 and below, 2021 Update 8 and below and 2018 update 18 and below, which allows a remote attacker to bypass the ColdFusion mechanisms that restrict unauthenticated external access to ColdFusion's Administrator.
Template:
id: CVE-2023-38205
info:
name: Adobe ColdFusion - Access Control Bypass
author: DhiyaneshDk
severity: high
description: |
There is an access control bypass vulnerability in Adobe ColdFusion versions 2023 Update 2 and below, 2021 Update 8 and below and 2018 update 18 and below, which allows a remote attacker to bypass the ColdFusion mechanisms that restrict unauthenticated external access to ColdFusion's Administrator.
impact: |
Successful ex
Checkpoint
10th October – Threat Intelligence Report
blogs_checkpoint·2022-10-10
CVE-2022-41352 10th October – Threat Intelligence Report
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 10th October – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 10th October, please download our Threat Intelligence Bulletin .
Top Attacks and Breaches
CommonSpirit Health, the second-largest nonprofit hospital chain in the U.S with 140 hospitals and over 1,000 facilities in 21 states, suffered a cybersecurity incident that disrupted medical services across the country. Facilities in Iowa, Nebraska, Tennessee and Washington were among those affected. The nature of the at
Huntress
CVE-2021-45046 Vulnerability: Analysis, Impact, Mitigation | Huntress
blogs_huntress·CVSS 10.0
CVE-2021-45046 CVE-2021-45046 Vulnerability: Analysis, Impact, Mitigation | Huntress
CVE-2021-45046 Vulnerability
Published: 2/20/2025
Written by: Lizzie Danielson
## What is CVE-2021-45046 vulnerability?
CVE-2021-45046 is a Remote Code Execution (RCE) vulnerability connected to the widely-used Apache Log4j logging library, which allows attackers to manipulate logging data. Initially perceived as a denial-of-service risk, it was later revealed to enable attackers to execute arbitrary code in certain non-default configurations, making it highly critical.
## When was it discovered?
CVE-2021-45046 was disclosed on December 14, 2021, following the initial CVE-2021-44228 ("Log4Shell") vulnerability. The flaw was identified during the response to the first issue, with contributions from Apache maintainers and security researchers.
## Affected products & versions
Product
Bugzilla
CVE-2021-23841 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()
bugzilla·2021-02-18·CVSS 5.9
CVE-2021-23841 [MEDIUM] CVE-2021-23841 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()
CVE-2021-23841 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()
The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer field (which might occur if the issuer field is maliciously constructed). This may subsequently result in a NULL pointer deref and a crash leading to a potential denial of service attack. The function X509_issuer_and_serial_hash() is never directly called by OpenSSL itself so applications are only vulnerable if they use this function directly and they use it on certificates that may have been obtained from untrusted sources. OpenSSL versions 1
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/https://security.gentoo.org/glsa/202105-27https://security.netapp.com/advisory/ntap-20210219-0003/https://www.oracle.com/security-alerts/cpujan2021.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/https://security.gentoo.org/glsa/202105-27https://security.netapp.com/advisory/ntap-20210219-0003/https://www.oracle.com/security-alerts/cpujan2021.html
2021-01-20
Published