CVE-2024-21199

Summary

CVE-2024-21199 is a vulnerability affecting Oracle MySQL Server, specifically in the InnoDB component, impacting supported versions 8.0.39 and prior, 8.4.2 and prior, and 9.0.1 and prior. This vulnerability allows a high-privileged attacker with network access to exploit the server via multiple protocols, potentially leading to a denial of service (DoS) through frequent crashes or hangs of the MySQL Server. The CVSS score for this vulnerability is 4.9, indicating a medium severity level with significant availability impact but no confidentiality or integrity implications. Organizations are advised to remediate this issue by upgrading to versions that exceed the affected thresholds as outlined in Oracle's security alerts. If left unaddressed, this vulnerability poses a risk of service disruption for affected databases within an organization’s infrastructure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.