CVE-2024-21170

Summary

CVE-2024-21170 is a vulnerability affecting Oracle MySQL's Connector/Python product, with a base score of 6.3 according to the Common Vulnerability Scoring System. Affected versions include 8.4.0 and prior. This issue is exploitable by low-privileged attackers with network access, allowing them to gain unauthorized access to MySQL Connectors' data. Successful attacks can result in unauthorized update, insert, or delete actions, as well as partial denial of service and unauthorized read access. The vulnerability can be exploited via multiple protocols, posing significant risks to confidentiality, integrity, and availability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.