Vulnerabilities > CVE-2020-14697

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

oracle

netapp

canonical

NVD

Published: 2020-07-15

Updated: 2023-05-16

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Mysql 8.0.0 Oracle Mysql 8.0.1 Oracle Mysql 8.0.2 Oracle Mysql 8.0.3 Oracle Mysql 8.0.4 Oracle Mysql 8.0.5 Oracle Mysql 8.0.10 Oracle Mysql 8.0.11 Oracle Mysql 8.0.12 Oracle Mysql 8.0.13 Oracle Mysql 8.0.14 Oracle Mysql 8.0.15 Oracle Mysql 8.0.16 Oracle Mysql 8.0.17 Oracle Mysql 8.0.18 Oracle Mysql 8.0.19 Oracle Mysql 8.0.20	17
Application	Netapp Netapp Snapcenter - Netapp Oncommand Workflow Automation - Netapp Oncommand Insight - Netapp Active IQ Unified Manager -	5
OS	Canonical Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 20.04 Canonical Ubuntu Linux 16.04	3

Vulnerabilities > CVE-2020-14697 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2020-14697"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2020-14697