PT-2026-3700 · Oracle+1 · Mysql Server
Jingzhou Fu
+1
·
Published
2026-01-20
·
Updated
2026-01-29
·
CVE-2026-21950
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Oracle MySQL versions 9.0.0 through 9.5.0
Description
A flaw exists in the Oracle MySQL Server component, specifically within the Optimizer. A low-privileged attacker with network access through multiple protocols can exploit this issue to cause a denial-of-service condition, leading to a hang or frequent crashes of the MySQL Server.
Recommendations
Update to a version later than 9.5.0.
Fix
DoS
Resource Exhaustion
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Mysql Server