PT-2021-21016 · Oracle · Mysql Cluster

Published

2021-10-20

Updated

2022-09-23

CVE-2021-35618

CVSS v3.1

1.8

Low

Vector

AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions: MySQL Cluster versions prior to 8.0.26

Description: The issue allows a high-privileged attacker with access to the physical communication segment to compromise MySQL Cluster. This requires human interaction from a person other than the attacker and can result in a partial denial of service (DOS) of MySQL Cluster.

Recommendations: For versions prior to 8.0.26, update to a version that contains a fix for this issue to prevent potential exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-35618

OESA-2021-1448

OESA-2022-1960

Affected Products

Mysql Cluster

PT-2021-21016 · Oracle · Mysql Cluster

CVE-2021-35618

Related Identifiers

Affected Products

References · 54