CVE-2023-22112

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Dec 22, 2023

Summary

CVE-2023-22112 is a new vulnerability affecting Oracle MySQL Server versions 8.0.34 and prior. This issue, located within the Optimizer component, is classified as easily exploitable and allows high privileged attackers with network access to cause a hang or frequent crash of MySQL Server via multiple protocols. Consequences of successful exploitation include server downtime and potential denial of service (DoS) attacks. The Base Score is 4.9 (High) under the CVSS 3.1 rating system, with a vector of (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tC8ZLp
https://www.cve.org/CVERecord?id=CVE-2023-22112
https://nvd.nist.gov/vuln/detail/CVE-2023-22112

Back to Vulnerability Database