What is the vulnerability ID for this MySQL Server vulnerability?

The vulnerability ID for this MySQL Server vulnerability is CVE-2020-14791.

What is the affected software for this MySQL Server vulnerability?

The affected software for this MySQL Server vulnerability includes Oracle MySQL 8.0.21 and prior versions.

How can a high privileged attacker exploit this vulnerability?

A high privileged attacker with network access can exploit this vulnerability to compromise the MySQL Server.

How severe is this MySQL Server vulnerability?

This MySQL Server vulnerability has a severity rating of low (2.2).

How do I fix this MySQL Server vulnerability?

To fix this MySQL Server vulnerability, upgrade to version 8.0.22 or later.

Vulnerability/
CVE-2020-14791

low

3.5

21/10/2020

26/9/2024

CVE-2020-14791

First published: Wed Oct 21 2020(Updated: )

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).

Credit: secalert_us@oracle.com

Affected Software	Affected Version	How to fix
redhat/mysql	<8.0.22	8.0.22
Oracle MySQL	>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows	>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere	>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
NetApp SnapCenter Server
Fedoraproject Fedora	=31
Fedoraproject Fedora	=32
Fedoraproject Fedora	=33

Remedy

https://www.oracle.com/security-alerts/cpuoct2020.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this MySQL Server vulnerability?
The vulnerability ID for this MySQL Server vulnerability is CVE-2020-14791.
What is the affected software for this MySQL Server vulnerability?
The affected software for this MySQL Server vulnerability includes Oracle MySQL 8.0.21 and prior versions.
How can a high privileged attacker exploit this vulnerability?
A high privileged attacker with network access can exploit this vulnerability to compromise the MySQL Server.
How severe is this MySQL Server vulnerability?
This MySQL Server vulnerability has a severity rating of low (2.2).
How do I fix this MySQL Server vulnerability?
To fix this MySQL Server vulnerability, upgrade to version 8.0.22 or later.

agent/type
agent/last-modified-date
agent/first-publish-date
agent/references
agent/remedy
agent/severity
agent/author
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2020-14791
agent/software-canonical-lookup
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
package-manager/redhat
vendor/oracle
canonical/oracle mysql
version/oracle mysql/8.0.0
version/oracle mysql/8.0.21
vendor/netapp
canonical/netapp active iq unified manager windows
version/netapp active iq unified manager windows/7.3
canonical/netapp active iq unified manager vmware vsphere
version/netapp active iq unified manager vmware vsphere/9.5
canonical/netapp oncommand insight
canonical/netapp oncommand workflow automation
canonical/netapp snapcenter server
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/31
version/fedoraproject fedora/32
version/fedoraproject fedora/33