Unrated severityNVD Advisory· Published Apr 29, 2010· Updated Jun 16, 2026
CVE-2009-4833
CVE-2009-4833
Description
MySQL Connector/NET before 6.0.4, when using encryption, does not verify SSL certificates during connection, which allows remote attackers to perform a man-in-the-middle attack with a spoofed SSL certificate.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:oracle:mysql_connector\/net:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:mysql_connector\/net:*:*:*:*:*:*:*:*range: <=6.0.3
- cpe:2.3:a:oracle:mysql_connector\/net:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql_connector\/net:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:mysql_connector\/net:6.0.2:*:*:*:*:*:*:*
- Range: <6.0.4
Patches
Vulnerability mechanics
References
5- bugs.mysql.com/bug.phpnvdExploitPatch
- secunia.com/advisories/35604nvdVendor Advisory
- www.securityfocus.com/bid/35514nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/51406nvd
News mentions
0No linked articles in our index yet.