VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Oracle
>
Mysql Server
> 8.0.27
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-04-19
CVE-2022-21440
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
netapp
5.5
5.5
2022-04-19
CVE-2022-21452
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
netapp
4.0
4.0
2022-04-19
CVE-2022-21457
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PAM Auth Plugin).
network
oracle
netapp
4.3
4.3
2022-04-19
CVE-2022-21459
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
netapp
5.5
5.5
2022-04-19
CVE-2022-21462
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
netapp
4.0
4.0
2022-02-24
CVE-2021-44531
Improper Certificate Validation vulnerability in multiple products
Accepting arbitrary Subject Alternative Name (SAN) types, unless a PKI is specifically defined to use a particular SAN type, can result in bypassing name-constrained intermediates.
network
high complexity
nodejs
oracle
CWE-295
7.4
7.4
2022-02-24
CVE-2021-44532
Improper Certificate Validation vulnerability in multiple products
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 converts SANs (Subject Alternative Names) to a string format.
network
low complexity
nodejs
oracle
debian
CWE-295
5.3
5.3
2022-02-24
CVE-2021-44533
Improper Certificate Validation vulnerability in multiple products
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly.
network
low complexity
nodejs
oracle
debian
CWE-295
5.3
5.3
2022-02-24
CVE-2022-21824
Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__".
network
low complexity
nodejs
oracle
debian
netapp
8.2
8.2
2021-03-23
CVE-2021-21351
Unrestricted Upload of File with Dangerous Type vulnerability in multiple products
XStream is a Java library to serialize objects to XML and back again.
network
low complexity
xstream-project
debian
fedoraproject
oracle
CWE-434
critical
9.1
9.1
«
Previous
1
2
...
5
6
7
8
(current)
9
»
Next