CVE-2023-22070

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Dec 22, 2023

Summary

CVE-2023-22070 is a vulnerability affecting Oracle MySQL Server versions 8.0.34 and prior, as well as 8.1.0. This issue lies within the Optimizer component and can be exploited by high privileged attackers with network access. Exploitation results in a hang or frequent crash (Denial of Service) of MySQL Server, making it an easily exploitable threat with a CVSS Base Score of 4.9. The attack can be carried out through multiple protocols, posing a significant Availability risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sC9q26
https://www.cve.org/CVERecord?id=CVE-2023-22070
https://nvd.nist.gov/vuln/detail/CVE-2023-22070

Back to Vulnerability Database