Unrated severityNVD Advisory· Published Jan 15, 2020· Updated Sep 30, 2024
CVE-2020-2694
CVE-2020-2694
Description
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.18 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12<=8.0.18+ 1 more
- (no CPE)range: <=8.0.18
- (no CPE)range: 8.0.18 and prior
- osv-coords10 versionspkg:apk/chainguard/mysql-8.0pkg:apk/chainguard/mysql-8.0-bitnami-compatpkg:apk/chainguard/mysql-8.0-clientpkg:apk/chainguard/mysql-8.0-devpkg:apk/chainguard/mysql-8.0-iamguarded-compatpkg:apk/chainguard/mysql-8.0-oci-entrypointpkg:apk/chainguard/mysql-8.0-oci-entrypoint-compatpkg:rpm/almalinux/mecabpkg:rpm/almalinux/mecab-ipadicpkg:rpm/almalinux/mecab-ipadic-EUCJP
< 8.0.38-r0+ 9 more
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 8.0.38-r0
- (no CPE)range: < 0.996-1.module_el8.4.0+2532+b8928c02.9
- (no CPE)range: < 2.7.0.20070801-16.module_el8.5.0+33+8bc5f36a
- (no CPE)range: < 2.7.0.20070801-16.module_el8.5.0+33+8bc5f36a
Patches
Vulnerability mechanics
References
4- security.gentoo.org/glsa/202105-27mitrevendor-advisoryx_refsource_GENTOO
- usn.ubuntu.com/4250-1/mitrevendor-advisoryx_refsource_UBUNTU
- security.netapp.com/advisory/ntap-20200122-0002/mitrex_refsource_CONFIRM
- www.oracle.com/security-alerts/cpujan2020.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.