CVE-2024-20972

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Feb 17, 2024

Updated: Mar 1, 2024

Summary

CVE-2024-20972 is a newly identified vulnerability affecting Oracle MySQL Server versions 8.0.35 and prior, as well as 8.2.0 and prior. This high-severity issue (CVSS Base Score: 4.9) enables a high-privileged attacker with network access to compromise the server via multiple protocols. Successful exploitation may result in a hang or frequently repeatable crash (Denial of Service) of the MySQL Server. This vulnerability is considered easily exploitable and poses significant availability risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL
Oracle MySQL Server

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uKy7P7
https://www.cve.org/CVERecord?id=CVE-2024-20972
https://nvd.nist.gov/vuln/detail/CVE-2024-20972

Back to Vulnerability Database