漏洞标题
N/A
漏洞描述信息
Oracle MySQL MySQL集群产品(组件:集群:通用). 受影响的支持版本是7.4.36和之前, 7.5.26和之前, 7.6.22和之前, 以及8.0.29和之前. 难以利用的漏洞允许具有访问硬件上与MySQL集群执行的物理通信段的高特权攻击者入侵MySQL集群。成功的攻击需要非攻击者的人进行人类交互。这个漏洞的成功攻击可能导致MySQL集群被接管。CVSS 3.1基础得分6.3(保密性, 完整性和可用性影响). CVSS向量: (CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H).
CVSS信息
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.36 and prior, 7.5.26 and prior, 7.6.22 and prior and and 8.0.29 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Cluster. CVSS 3.1 Base Score 6.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H).
CVSS信息
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Oracle MySQL 输入验证错误漏洞
漏洞描述信息
Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。MySQL Server是其中的一个数据库服务器组件。 Oracle MySQL 存在输入验证错误漏洞,攻击者成功攻击此漏洞可导致 MySQL Cluster 被接管。
CVSS信息
N/A
漏洞类别
输入验证错误