CVE-2024-21137

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jul 16, 2024

Updated: Jul 17, 2024

Summary

CVE-2024-21137 is a vulnerability affecting Oracle MySQL Server versions 8.0.35 and prior, as well as 8.2.0 and prior. This easily exploitable issue allows high privileged attackers with network access to cause a hang or frequently repeatable crash of MySQL Server, leading to a Denial of Service (DoS) attack. Impacting availability, the Base Score is 4.9. Attackers can exploit this vulnerability via multiple protocols, making it crucial for users to apply the necessary patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MySQL
Oracle MySQL Server
MySQL Server

Affected Vendors

BonqDAO
MySQL AB

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xDiQoX
https://www.cve.org/CVERecord?id=CVE-2024-21137
https://nvd.nist.gov/vuln/detail/CVE-2024-21137

Back to Vulnerability Database