Vulnerabilities > Oracle > Mysql > 8.0.18
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-15 | CVE-2020-2765 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). | 4.9 |
| 2020-04-15 | CVE-2020-2763 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). | 4.9 |
| 2020-04-15 | CVE-2020-2762 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). | 4.9 |
| 2020-04-15 | CVE-2020-2761 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). | 4.9 |
| 2020-04-15 | CVE-2020-2760 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). | 5.5 |
| 2020-04-15 | CVE-2020-2759 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). | 4.9 |
| 2020-04-09 | CVE-2020-11656 | Use After Free vulnerability in multiple products In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement. | 7.5 |
| 2020-04-09 | CVE-2020-11655 | Improper Initialization vulnerability in multiple products SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled. | 5.0 |
| 2020-03-10 | CVE-2020-5258 | Code Injection vulnerability in multiple products In affected versions of dojo (NPM package), the deepCopy method is vulnerable to Prototype Pollution. | 7.7 |
| 2020-01-17 | CVE-2020-5398 | Download of Code Without Integrity Check vulnerability in multiple products In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a "Content-Disposition" header in the response where the filename attribute is derived from user supplied input. | 7.5 |