CVE-2019-2795

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

Published : 2019-07-23 23:15 Updated : 2019-08-14 10:15

4.0
CVSS Score More info
Score 4.0 / 10
4.0
Vendor Product Version URI
Oracle Mysql 8.0.16 cpe:/a:oracle:mysql:8.0.16
  1. Oracle (1) Search CVE
    1. Mysql (1) Search CVE
      1. 8.0.16

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2019-08-14 10:15
2019-07-24 20:22
2019-07-23 23:15

New CVE