CVE-2023-22008

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jul 18, 2023

Updated: Oct 30, 2023

Summary

CVE-2023-22008 is a serious vulnerability affecting Oracle MySQL's InnoDB component in versions 8.0.33 and below. This issue allows high-privileged attackers to gain network access and cause a hang or frequent crashes of MySQL Server, resulting in a denial-of-service (DoS) attack. The vulnerability is easily exploitable and has a base CVSS score of 4.9 in availability impact. Attackers can leverage multiple protocols to exploit this flaw, making it a significant threat to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL
Oracle MySQL Server
Fedora Operating System
NetApp SnapCenter

Affected Vendors

BonqDAO
Fedora Project
NetApp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sCXa8t
https://www.cve.org/CVERecord?id=CVE-2023-22008
https://nvd.nist.gov/vuln/detail/CVE-2023-22008

Back to Vulnerability Database