CVE-2023-21971

Name of the Vulnerable Software and Affected Versions MySQL Connectors versions 8.0.32 and prior

Description The vulnerability exists due to insufficient input validation in the Connector/J component of the MySQL Connectors product. A difficult to exploit vulnerability allows a high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and can result in unauthorized ability to cause a hang or frequently repeatable crash of MySQL Connectors, as well as unauthorized update, insert, or delete access to some of MySQL Connectors accessible data and unauthorized read access to a subset of MySQL Connectors accessible data.

Recommendations For versions 8.0.32 and prior, update to a version that contains a fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.