Vulnerabilities > CVE-2023-22048

CVSS 3.1 - LOW

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

high complexity

oracle

fedoraproject

netapp

NVD

Published: 2023-07-18

Updated: 2023-10-30

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Mysql Server 8.0.0 Oracle Mysql Server 8.0.15 Oracle Mysql Server 8.0.17 Oracle Mysql Server 8.0.22 Oracle Mysql Server 8.0.23 Oracle Mysql Server 8.0.24 Oracle Mysql Server 8.0.25 Oracle Mysql Server 8.0.26 Oracle Mysql Server 8.0.27 Oracle Mysql Server 8.0.28 Oracle Mysql Server 8.0.29 Oracle Mysql Server 8.0.30 Oracle Mysql Server 8.0.31 Oracle Mysql Server 8.0.32 Oracle Mysql Server 8.0.33	15
Application	Netapp Netapp Snapcenter - Netapp Oncommand Workflow Automation - Netapp Oncommand Insight - Netapp Active IQ Unified Manager -	5
OS	Fedoraproject Fedoraproject Fedora 37 Fedoraproject Fedora 38 Fedoraproject Fedora 39	3

Vulnerabilities > CVE-2023-22048 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2023-22048"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2023-22048