Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs

1,328

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 15 of 67

CVE-2021-35645MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35645 [MEDIUM] CVE-2021-35645: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability

nvd

CVE-2021-35577MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35577 [MEDIUM] CVE-2021-35577: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via MySQL Protcol to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to c

nvd

CVE-2021-35597MEDIUMCVSS 6.5≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35597 [MEDIUM] CVE-2021-35597: Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions tha Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a

nvd

CVE-2021-35632MEDIUMCVSS 4.4≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35632 [MEDIUM] CVE-2021-35632: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary). Supp Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Data Dictionary). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can resul

nvd

CVE-2021-35591MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35591 [MEDIUM] CVE-2021-35591: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versio Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to c

nvd

CVE-2021-35631MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35631 [MEDIUM] CVE-2021-35631: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versio Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: GIS). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to c

nvd

CVE-2021-35575MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35575 [MEDIUM] CVE-2021-35575: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability

nvd

CVE-2021-35636MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35636 [MEDIUM] CVE-2021-35636: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability

nvd

CVE-2021-35608MEDIUMCVSS 5.3≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35608 [MEDIUM] CVE-2021-35608: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plug Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in una

nvd

CVE-2021-35628MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35628 [MEDIUM] CVE-2021-35628: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability

nvd

CVE-2021-35602MEDIUMCVSS 5.0≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35602 [MEDIUM] CVE-2021-35602: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported ve Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abilit

nvd

CVE-2021-35624MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.35≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35624 [MEDIUM] CVE-2021-35624: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability c

nvd

CVE-2021-35546MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35546 [MEDIUM] CVE-2021-35546: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supporte Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abil

nvd

CVE-2021-35596MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35596 [MEDIUM] CVE-2021-35596: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Error Handling). Suppo Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Error Handling). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized a

nvd

CVE-2021-35625LOWCVSS 2.7≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35625 [LOW] CVE-2021-35625: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorize

nvd

CVE-2021-35633LOWCVSS 2.7≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35633 [LOW] CVE-2021-35633: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported ve Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to

nvd

CVE-2021-35640LOWCVSS 2.7≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35640 [LOW] CVE-2021-35640: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versio Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert

nvd

CVE-2021-35623LOWCVSS 2.7≥ 8.0.0, ≤ 8.0.262021-10-20

CVE-2021-35623 [LOW] CVE-2021-35623: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supp Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized rea

nvd

CVE-2021-2354MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.252021-07-21

CVE-2021-2354 [MEDIUM] CVE-2021-2354: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Federated). Supported Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Federated). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability t

nvd

CVE-2021-2339MEDIUMCVSS 4.9≥ 8.0.0, ≤ 8.0.252021-07-21

CVE-2021-2339 [MEDIUM] CVE-2021-2339: Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versio Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cau

nvd

← Previous15 / 67Next →