CVE-2023-22026

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Dec 22, 2023

Summary

CVE-2023-22026 is a serious vulnerability affecting Oracle MySQL Server versions 5.7.42 and prior, as well as 8.0.31 and prior. This issue lies within the Optimizer component and can be exploited by high privileged attackers with network access, enabling them to cause a denial-of-service (DoS) on the MySQL Server. The vulnerability is easily exploitable and results in a hang or frequent crashes, making it a significant threat to availability. With a base score of 4.9, CVSS 3.1 rates this vulnerability as having high availability impact.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tC8ZLh
https://www.cve.org/CVERecord?id=CVE-2023-22026
https://nvd.nist.gov/vuln/detail/CVE-2023-22026

Back to Vulnerability Database