What is the vulnerability ID for this MySQL Server vulnerability?

The vulnerability ID for this MySQL Server vulnerability is CVE-2022-21451.

What is the affected software?

The affected software is Oracle MySQL Server versions 5.7.37 and prior, and 8.0.28 and prior.

What is the severity of CVE-2022-21451?

The severity of CVE-2022-21451 is medium with a severity value of 4.4.

How can an attacker exploit CVE-2022-21451?

An attacker with high privilege and network access via multiple protocols can exploit CVE-2022-21451 to compromise MySQL Server.

Where can I find more information about CVE-2022-21451?

You can find more information about CVE-2022-21451 at the following references: [Reference 1](https://security.netapp.com/advisory/ntap-20220429-0005/), [Reference 2](https://www.oracle.com/security-alerts/cpuapr2022.html), [Reference 3](https://www.oracle.com/security-alerts/cpuapr2022.html#AppendixMSQL).

Vulnerability/
CVE-2022-21451

medium

4.4

19/4/2022

21/11/2024

CVE-2022-21451

First published: Tue Apr 19 2022(Updated: )

Last updated 24 July 2024

Credit: secalert_us@oracle.com secalert_us@oracle.com

Affected Software	Affected Version	How to fix
redhat/mysql	<5.7.38	5.7.38
redhat/mysql	<8.0.29	8.0.29
redhat/mariadb	<10.5.10	10.5.10
redhat/mariadb	<10.4.19	10.4.19
redhat/mariadb	<10.3.29	10.3.29
redhat/mariadb	<10.2.38	10.2.38
debian/mysql-8.0		8.0.41-3
Oracle MySQL	>=5.7.0<=5.7.37
Oracle MySQL	>=8.0.0<=8.0.28
NetApp Active IQ Unified Manager for VMware vSphere
NetApp Active IQ Unified Manager
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
NetApp SnapCenter
MariaDB	>=10.2.0<10.2.38
MariaDB	>=10.3.0<10.3.29
MariaDB	>=10.4.0<10.4.19
MariaDB	>=10.5.0<10.5.10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID for this MySQL Server vulnerability?
The vulnerability ID for this MySQL Server vulnerability is CVE-2022-21451.
What is the affected software?
The affected software is Oracle MySQL Server versions 5.7.37 and prior, and 8.0.28 and prior.
What is the severity of CVE-2022-21451?
The severity of CVE-2022-21451 is medium with a severity value of 4.4.
How can an attacker exploit CVE-2022-21451?
An attacker with high privilege and network access via multiple protocols can exploit CVE-2022-21451 to compromise MySQL Server.
Where can I find more information about CVE-2022-21451?
You can find more information about CVE-2022-21451 at the following references: [Reference 1](https://security.netapp.com/advisory/ntap-20220429-0005/), [Reference 2](https://www.oracle.com/security-alerts/cpuapr2022.html), [Reference 3](https://www.oracle.com/security-alerts/cpuapr2022.html#AppendixMSQL).

agent/type
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-21451
agent/software-canonical-lookup
collector/launchpad-cve
source/Launchpad
agent/author
agent/severity
collector/usn-cve
source/Ubuntu
agent/references
agent/description
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/trending
agent/source
agent/event
collector/security-tracker-debian
source/Debian
agent/softwarecombine
agent/tags
collector/nvd-cve
source/NVD
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/redhat
package-manager/debian
vendor/oracle
canonical/oracle mysql
version/oracle mysql/5.7.0
version/oracle mysql/5.7.37
version/oracle mysql/8.0.0
version/oracle mysql/8.0.28
vendor/netapp
canonical/netapp active iq unified manager for vmware vsphere
canonical/netapp active iq unified manager
canonical/netapp oncommand insight
canonical/netapp oncommand workflow automation
canonical/netapp snapcenter
vendor/mariadb
canonical/mariadb
version/mariadb/10.2.0
version/mariadb/10.3.0
version/mariadb/10.4.0
version/mariadb/10.5.0