CVE-2024-20965

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Feb 2, 2024

Summary

CVE-2024-20965 is a vulnerability affecting Oracle MySQL Server versions 8.0.35 and prior, as well as 8.2.0 and prior. This issue lies in the Optimizer component and is easily exploitable by high privileged attackers with network access. Exploitation can lead to a hang or frequent crashes of MySQL Server, resulting in a Denial of Service (DoS) attack. The Base Score of this vulnerability, according to the Common Vulnerability Scoring System (CVSS), is 4.9, with a high level of privilege required to exploit it.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uKy7Pv
https://www.cve.org/CVERecord?id=CVE-2024-20965
https://nvd.nist.gov/vuln/detail/CVE-2024-20965

Back to Vulnerability Database