CVE-2023-22065

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Dec 22, 2023

Summary

CVE-2023-22065 is a serious vulnerability affecting Oracle MySQL Server versions 8.0.33 and prior. This issue, located within the Optimizer component, can be exploited by high-privileged attackers with network access. Successful exploits can lead to a hang or frequent crash of the MySQL Server, resulting in a denial-of-service (DoS) attack. The Common Vulnerability Scoring System (CVSS) has assigned a base score of 4.9 for the potential impact on availability. Attackers can exploit this flaw using multiple protocols.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sC9q2w
https://www.cve.org/CVERecord?id=CVE-2023-22065
https://nvd.nist.gov/vuln/detail/CVE-2023-22065

Back to Vulnerability Database