CVE-2020-2933
First published: Wed Apr 15 2020(Updated: )
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 5.1.48 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Mysql Connector\/j | <=5.1.48 | |
| Fedoraproject Fedora | =32 | |
| Fedoraproject Fedora | =33 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| debian/mysql-connector-java |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL
- https://security-tracker.debian.org/tracker/CVE-2020-2933
- https://www.cve.org/CVERecord?id=CVE-2020-2933 https://nvd.nist.gov/vuln/detail/CVE-2020-2933
- https://bugzilla.redhat.com/show_bug.cgi?id=1851022
- https://access.redhat.com/errata/RHSA-2020:4960
- https://access.redhat.com/errata/RHSA-2020:4961
- https://access.redhat.com/security/cve/cve-2020-2933
- https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/
- https://security.gentoo.org/glsa/202105-27
- https://www.debian.org/security/2020/dsa-4703
- https://www.oracle.com/security-alerts/cpuapr2020.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1851024
- https://access.redhat.com/support/policy/updates/jboss_notes
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/
- collector/security-tracker-debian
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/author
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2020-2933
- agent/software-canonical-lookup
- agent/references
- agent/severity
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/trending
- package-manager/debian
- vendor/oracle
- canonical/oracle mysql connector\/j
- version/oracle mysql connector\/j/5.1.48
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/32
- version/fedoraproject fedora/33
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- package-manager/redhat