CVE-2024-21193

CVSS 3.1 Score 4.9 of 10 (medium)

Details

Published Oct 15, 2024

Summary

CVE-2024-21193 is a vulnerability affecting Oracle MySQL Server, specifically in versions 8.0.39 and earlier, 8.4.2 and earlier, and 9.0.1 and earlier. This vulnerability can be easily exploited by a high-privileged attacker with network access through various protocols, allowing them to cause the MySQL Server to hang or experience frequent crashes (Denial of Service). The CVSS 3.1 Base Score for this issue is 4.9, indicating a medium severity level with high availability impact and low attack complexity. To remediate this vulnerability, it is recommended that organizations update their MySQL Server to the latest versions provided by Oracle as detailed in their security alerts. Failure to address this issue could lead to significant disruptions in database availability for affected organizations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database