CVE-2024-20967

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Feb 2, 2024

Summary

CVE-2024-20967 is a newly discovered vulnerability affecting Oracle MySQL Server versions 8.0.35 and prior, as well as 8.2.0 and prior. This high privileged network exploit enables attackers to compromise MySQL Servers, leading to denial-of-service (DoS) attacks, causing frequent crashes and hangs. Additionally, attackers can gain unauthorized access to update, insert, or delete data. The vulnerability has a CVSS 3.1 Base Score of 5.5 for Integrity and Availability impacts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uKy7Pr
https://www.cve.org/CVERecord?id=CVE-2024-20967
https://nvd.nist.gov/vuln/detail/CVE-2024-20967

Back to Vulnerability Database