CVE-2024-21087

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Apr 16, 2024

Updated: Apr 26, 2024

Summary

CVE-2024-21087 is a serious vulnerability affecting Oracle MySQL's Server: Group Replication Plugin. This issue, with a CVSS Base Score of 4.9 (Availability impacts), impacts MySQL Server versions 8.0.36 and prior, as well as 8.3.0 and prior. A high privileged attacker with network access can easily exploit this vulnerability, leading to a hang or frequent crash (complete denial of service) of the MySQL Server. This issue can be exploited via multiple protocols, making it a significant risk for organizations using these affected versions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL Server
MySQL
Oracle MySQL Server

Affected Vendors

BonqDAO
MySQL AB

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vblQ0P
https://www.cve.org/CVERecord?id=CVE-2024-21087
https://nvd.nist.gov/vuln/detail/CVE-2024-21087

Back to Vulnerability Database