CVE-2021-35594

MEDIUM Year: 2021
CVSS v3 Score
6.3
Medium
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-129
View all →

Vulnerability Description

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.33 and prior, 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Cluster executes to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Cluster. CVSS 3.1 Base Score 6.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H).

Related Vulnerabilities

CVE-2021-35592

MEDIUM
CVSS:6.3(Medium)

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and prior. Difficult to...

CWE-1292021

CVE-2021-35598

MEDIUM
CVSS:6.3(Medium)

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.33 and prior, 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and p...

CWE-1292021

CVE-2022-21310

MEDIUM
CVSS:6.3(Medium)

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and p...

CWE-1292022

CVE-2025-30077

MEDIUM
CVSS:6.2(Medium)

Open Networking Foundation SD-RAN ONOS onos-lib-go 0.10.28 allows an index out-of-range panic in asn1/aper GetBitString via a zero value of numBits.

CWE-1292025

CVE-2019-1000016

MEDIUM
CVSS:6.5(Medium)

FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbs_av1.c that can result in Denial of service. This attack appears to be exploitable via speciall...

CWE-1292019

CVE-2020-17398

MEDIUM
CVSS:6.5(Medium)

This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.4. An attacker must first obtain the ability to execute low-privileged code on the...

CWE-1292020