What is the severity of CVE-2021-2014?

CVE-2021-2014 has a high severity rating due to its potential to cause denial of service and high availability impact.

Who is affected by CVE-2021-2014?

CVE-2021-2014 affects multiple versions of Oracle MySQL Server, IBM Security Guardium, and specific NetApp products.

How do I fix CVE-2021-2014?

To remediate CVE-2021-2014, users should apply the latest security patches provided by Oracle and other vendors.

What type of attacks are associated with CVE-2021-2014?

CVE-2021-2014 allows authenticated attackers to execute denial of service attacks using unknown vectors.

Is there a workaround for CVE-2021-2014?

Currently, there are no publicly acknowledged workarounds for CVE-2021-2014; applying updates is recommended.

Vulnerability/
CVE-2021-2014

medium

6.8

20/1/2021

26/9/2024

CVE-2021-2014

First published: Wed Jan 20 2021(Updated: )

An unspecified vulnerability in Oracle MySQL Server related to the Server: PAM Auth Plugin component could allow an authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.

Credit: secalert_us@oracle.com

Affected Software	Affected Version	How to fix
IBM InfoSphere Guardium z/OS	<=10.5
IBM InfoSphere Guardium z/OS	<=10.6
IBM InfoSphere Guardium z/OS	<=11.0
IBM InfoSphere Guardium z/OS	<=11.1
IBM InfoSphere Guardium z/OS	<=11.2
IBM InfoSphere Guardium z/OS	<=11.3
Oracle MySQL	>=5.7.0<=5.7.32
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
NetApp SnapCenter

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-6455269

Frequently Asked Questions

What is the severity of CVE-2021-2014?
CVE-2021-2014 has a high severity rating due to its potential to cause denial of service and high availability impact.
Who is affected by CVE-2021-2014?
CVE-2021-2014 affects multiple versions of Oracle MySQL Server, IBM Security Guardium, and specific NetApp products.
How do I fix CVE-2021-2014?
To remediate CVE-2021-2014, users should apply the latest security patches provided by Oracle and other vendors.
What type of attacks are associated with CVE-2021-2014?
CVE-2021-2014 allows authenticated attackers to execute denial of service attacks using unknown vectors.
Is there a workaround for CVE-2021-2014?
Currently, there are no publicly acknowledged workarounds for CVE-2021-2014; applying updates is recommended.

agent/type
agent/severity
agent/references
agent/author
agent/description
agent/first-publish-date
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/trending
agent/source
collector/ibm-support
source/IBM
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-index
vendor/ibm
canonical/ibm infosphere guardium z/os
version/ibm infosphere guardium z/os/10.5
version/ibm infosphere guardium z/os/10.6
version/ibm infosphere guardium z/os/11.0
version/ibm infosphere guardium z/os/11.1
version/ibm infosphere guardium z/os/11.2
version/ibm infosphere guardium z/os/11.3
vendor/oracle
canonical/oracle mysql installer
version/oracle mysql installer/5.7.0
version/oracle mysql installer/5.7.32
vendor/netapp
canonical/netapp oncommand insight
canonical/netapp oncommand workflow automation
canonical/netapp snapcenter

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.