CVE-2024-21173

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Jul 16, 2024

Updated: Jul 17, 2024

Summary

CVE-2024-21173 is a vulnerability affecting Oracle MySQL's InnoDB component in versions 8.0.37 and prior, as well as 8.4.0 and prior. This easily exploitable issue permits a high privileged attacker with network access to cause a hang or frequently repeatable crash (complete Denial of Service) of MySQL Server. The Base Score of this vulnerability under CVSS 3.1 is 4.9, with a high level of privilege required for an attacker and no user interaction needed.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle MySQL Server
MySQL Server

Affected Vendors

MySQL AB
BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xDiQoJ
https://www.cve.org/CVERecord?id=CVE-2024-21173
https://nvd.nist.gov/vuln/detail/CVE-2024-21173

Back to Vulnerability Database