PT-2022-3779 · Oracle+1 · Mysql Shell+1

Published

2022-07-19

Updated

2024-03-06

CVE-2022-21535

CVSS v3.1

2.5

Low

Vector

AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions MySQL Shell versions 8.0.28 and prior

Description The issue is related to resource release errors in the Oracle MySQL Shell component. It may allow an attacker to cause a denial of service. The exploitation requires an unauthenticated attacker with logon to the infrastructure where MySQL Shell is executed and human interaction from a person other than the attacker.

Recommendations For versions 8.0.28 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404

Related Identifiers

ALT-PU-2022-2552

ALT-PU-2022-3102

ALT-PU-2023-1912

BDU:2022-04571

BIT-MYSQL-SHELL-2022-21535

CVE-2022-21535

Affected Products

Alt Linux

Mysql Shell

PT-2022-3779 · Oracle+1 · Mysql Shell+1

CVE-2022-21535

Weakness Enumeration

Related Identifiers

Affected Products

References · 7