CVE-2021-35613

7 documents7 sources
Severity
3.7LOW
EPSS
0.7%
top 27.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Mysql ClusterOracle Corporation Mysql Cluster
Timeline
PublishedOct 20
Latest updateMay 24

Description

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Cluster. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 2.2 | Impact: 1.4

Affected Packages3 packages

NVDoracle/mysql_cluster8.0.08.0.26
CVEListV5oracle_corporation/mysql_cluster8.0.26 and prior
Ubuntumysql-8.0< 8.0.27-0ubuntu0.20.04.1+1

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

3
GHSA
GHSA-2rh3-vwh8-wvmg: Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General)2022-05-24
CVEList
CVE-2021-35613: Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General)2021-10-20
OSV
CVE-2021-35613: Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General)2021-10-20

📋Vendor Advisories

3
Ubuntu
MySQL vulnerabilities2021-10-25
Oracle
Oracle Oracle MySQL Risk Matrix: Cluster: General — CVE-2021-356132021-10-15
Debian
CVE-2021-35613: mysql-8.0 - Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: ...2021
CVE-2021-35613 (LOW CVSS 3.7) | Vulnerability in the MySQL Cluster | cvebase.io