How severe is CVE-2024-21054?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.9 out of 10.

What type of vulnerability is CVE-2024-21054?

This is classified as CWE-121, which is a common weakness in software security.

CVE-2024-21054 - MEDIUM Severity | CVSS 4.9

Vulnerability Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Related Vulnerabilities

CVE-2024-20998

MEDIUM

CVSS:4.9(Medium)

CWE-1212024

CVE-2024-21053

MEDIUM

CVSS:4.9(Medium)

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.34 and prior. Easily exploitable vulnerability allows high privileged a...

CWE-1212024

CVE-2024-29012

MEDIUM

CVSS:4.9(Medium)

Stack-based buffer overflow vulnerability in the SonicOS HTTP server allows an authenticated remote attacker to cause Denial of Service (DoS) via sscanf function.

CWE-1212024

CVE-2024-47905

MEDIUM

CVSS:4.9(Medium)

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.2 allows a remote authenticated attacker with admin privileges to cause a ...

CWE-1212024

CVE-2024-47909

MEDIUM

CVSS:4.9(Medium)

CWE-1212024

CVE-2024-53296

MEDIUM

CVSS:4.9(Medium)

Dell PowerProtect DD versions prior to 7.10.1.50 and 7.13.1.20 contain a Stack-based Buffer Overflow vulnerability in the RestAPI. A high privileged attacker with remote access could potentially explo...

CWE-1212024