Vulnerabilities > Oracle > Mysql Cluster > 7.4.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-18 | CVE-2023-21860 | Unspecified vulnerability in Oracle Mysql Cluster Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: Internal Operations). high complexity oracle | 6.3 |
| 2022-02-24 | CVE-2021-44531 | Improper Certificate Validation vulnerability in multiple products Accepting arbitrary Subject Alternative Name (SAN) types, unless a PKI is specifically defined to use a particular SAN type, can result in bypassing name-constrained intermediates. | 7.4 |
| 2022-02-24 | CVE-2021-44532 | Improper Certificate Validation vulnerability in multiple products Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format. | 5.3 |
| 2022-02-24 | CVE-2021-44533 | Improper Certificate Validation vulnerability in multiple products Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly. | 5.3 |
| 2022-02-24 | CVE-2022-21824 | Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__". | 8.2 |
| 2021-10-20 | CVE-2021-35590 | Out-of-bounds Write vulnerability in multiple products Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). | 6.3 |
| 2021-10-20 | CVE-2021-35593 | Out-of-bounds Write vulnerability in multiple products Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). | 6.3 |
| 2021-10-20 | CVE-2021-35594 | Improper Validation of Array Index vulnerability in multiple products Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). | 6.3 |
| 2021-10-20 | CVE-2021-35598 | Improper Validation of Array Index vulnerability in multiple products Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). | 6.3 |
| 2021-08-16 | CVE-2021-22931 | Improper Input Validation vulnerability in multiple products Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library. | 9.8 |