MySQL Server DoS Vulnerability (CVE-2024-20994) – Critical

2024-11-27

Vulnerability :

This critical vulnerability (CVE-2024-20994) exists in Oracle MySQL Server versions 8.0.36 and prior and 8.3.0 and prior. A low-privileged attacker with network access can exploit this vulnerability to cause a Denial-of-Service (DoS) attack, making the MySQL server unavailable.

Vulnerability Details:

Platform: Oracle MySQL Server
Version: 8.0.36 and prior, 8.3.0 and prior
Vulnerability: Information Schema flaw
Severity: Critical (CVSS score: 5.3)
Date: April 16, 2024 (published), November 27, 2024 (last modified)

What Undercode Says:

This is a critical vulnerability that can be exploited by attackers to disrupt database operations. It is important to update MySQL Server to a version that is not affected by this vulnerability (8.4.0 or later) as soon as possible.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top