CVE-2020-2780

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-2780
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-2780.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-2780
Aliases
Downstream
Related
Published
2020-04-15T14:15:26.950Z
Modified
2026-03-15T22:38:21.709118Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

References

Affected packages

Git / github.com/mariadb/server

Affected ranges

Type
GIT
Repo
https://github.com/mariadb/server
Events
Introduced
5bfe1a3917ee1bddc7f2cde0c88961875148873c
Fixed
9277b6ec1ce8bc195a10b5deb11d65843adf8972
Introduced
c235de12ae3723b96944337bd89ad9cc87f21d8f
Fixed
d925aec1c10cebf6c34825a7de50afe4e630aff4
Introduced
9664240c948a92c22ccda0e1f5a420eb776ddcb1
Fixed
1552b254a0140e91c54394af5d06d25ae88d5a28
Introduced
20ae591abd0bfe1bfaee546989ee163f4ef832b1
Fixed
e1a2b12577680ad365d297dcf617752d9d42e110
Introduced
c761b43451d54eeeecdf3c102906fcce88d4e9d9
Fixed
0339cbe2f628f8a122ba7ea3a75fc99fa1dc4c96
Database specific 
{
    "versions": [
        {
            "introduced": "5.5.0"
        },
        {
            "fixed": "5.5.66"
        },
        {
            "introduced": "10.1.0"
        },
        {
            "fixed": "10.1.42"
        },
        {
            "introduced": "10.2.0"
        },
        {
            "fixed": "10.2.28"
        },
        {
            "introduced": "10.3.0"
        },
        {
            "fixed": "10.3.19"
        },
        {
            "introduced": "10.4.0"
        },
        {
            "fixed": "10.4.9"
        }
    ]
}
Type
GIT
Repo
https://github.com/mysql/mysql-server
Events
Introduced
270fd3411e3d671a73ed9725940a30080f59ce6d
Last affected
ea7d2e2d16ac03afdd9cb72a972a95981107bf51
Database specific 
{
    "versions": [
        {
            "introduced": "8.0.0"
        },
        {
            "last_affected": "8.0.19"
        }
    ]
}

Affected versions

mariadb-10.*
mariadb-10.1.0
mariadb-5.*
mariadb-5.5.39
mariadb-5.5.40
mariadb-5.5.41
mariadb-5.5.42
mariadb-5.5.43
mariadb-5.5.44
mariadb-5.5.45
mariadb-5.5.46
mariadb-5.5.47
mariadb-5.5.48
mariadb-5.5.49
mariadb-5.5.50
mariadb-5.5.51
mariadb-5.5.52
mariadb-5.5.53
mariadb-5.5.54
mariadb-5.5.55
mariadb-5.5.56
mariadb-5.5.57
mariadb-5.5.58
mariadb-5.5.59
mariadb-5.5.60
mariadb-5.5.61
mariadb-5.5.62
mariadb-5.5.63
mariadb-5.5.64
mariadb-5.5.65
mysql-5.*
mysql-5.5.39
mysql-5.5.40
mysql-5.5.41
mysql-5.5.42
mysql-5.5.43
mysql-5.5.44
mysql-5.5.45
mysql-5.5.46
mysql-5.5.47
mysql-5.5.48
mysql-5.5.49
mysql-5.5.50
mysql-5.5.51
mysql-5.5.52
mysql-5.5.53
mysql-5.5.54
mysql-5.5.55
mysql-5.5.56
mysql-5.5.57
mysql-5.5.58
mysql-5.5.59
mysql-5.5.60
mysql-5.5.61
mysql-5.5.62
mysql-5.5.63
mysql-5.6.33
mysql-5.6.34
mysql-5.6.35
mysql-5.6.36
mysql-5.6.37
mysql-5.6.38
mysql-5.6.39
mysql-5.6.40
mysql-5.6.41
mysql-5.6.42
mysql-5.6.43
mysql-5.6.45
mysql-5.6.46
mysql-5.7-22-ndb-7.6.6
mysql-5.7.15
mysql-5.7.16
mysql-5.7.17
mysql-5.7.18
mysql-5.7.19
mysql-5.7.20
mysql-5.7.21
mysql-5.7.22
mysql-5.7.24
mysql-5.7.25
mysql-5.7.26
mysql-5.7.27
mysql-5.7.28
mysql-8.*
mysql-8.0.0
mysql-8.0.1
mysql-8.0.11
mysql-8.0.12
mysql-8.0.13
mysql-8.0.14
mysql-8.0.15
mysql-8.0.16
mysql-8.0.17
mysql-8.0.18
mysql-8.0.19
mysql-8.0.2
mysql-8.0.3
mysql-8.0.4
mysql-cluster-7.*
mysql-cluster-7.2.24
mysql-cluster-7.2.25
mysql-cluster-7.2.26
mysql-cluster-7.2.27
mysql-cluster-7.2.28
mysql-cluster-7.2.29
mysql-cluster-7.2.30
mysql-cluster-7.2.31
mysql-cluster-7.2.32
mysql-cluster-7.2.33
mysql-cluster-7.2.34
mysql-cluster-7.2.35
mysql-cluster-7.2.37
mysql-cluster-7.2.38
mysql-cluster-7.2.39
mysql-cluster-7.3.13
mysql-cluster-7.3.14
mysql-cluster-7.3.15
mysql-cluster-7.3.16
mysql-cluster-7.3.17
mysql-cluster-7.3.18
mysql-cluster-7.3.19
mysql-cluster-7.3.20
mysql-cluster-7.3.21
mysql-cluster-7.3.22
mysql-cluster-7.3.23
mysql-cluster-7.3.24
mysql-cluster-7.3.25
mysql-cluster-7.3.26
mysql-cluster-7.3.27
mysql-cluster-7.4.11
mysql-cluster-7.4.12
mysql-cluster-7.4.13
mysql-cluster-7.4.14
mysql-cluster-7.4.15
mysql-cluster-7.4.16
mysql-cluster-7.4.17
mysql-cluster-7.4.18
mysql-cluster-7.4.19
mysql-cluster-7.4.20
mysql-cluster-7.4.21
mysql-cluster-7.4.23
mysql-cluster-7.4.24
mysql-cluster-7.4.25
mysql-cluster-7.4.26
mysql-cluster-7.5.1
mysql-cluster-7.5.10
mysql-cluster-7.5.11
mysql-cluster-7.5.12
mysql-cluster-7.5.13
mysql-cluster-7.5.14
mysql-cluster-7.5.15
mysql-cluster-7.5.16
mysql-cluster-7.5.2
mysql-cluster-7.5.3
mysql-cluster-7.5.4
mysql-cluster-7.5.5
mysql-cluster-7.5.6
mysql-cluster-7.5.7
mysql-cluster-7.5.8
mysql-cluster-7.5.9
mysql-cluster-7.6.10
mysql-cluster-7.6.11
mysql-cluster-7.6.12
mysql-cluster-7.6.2
mysql-cluster-7.6.3
mysql-cluster-7.6.4
mysql-cluster-7.6.5
mysql-cluster-7.6.6
mysql-cluster-7.6.7
mysql-cluster-7.6.8
mysql-cluster-7.6.9
mysql-cluster-8.*
mysql-cluster-8.0.16
mysql-cluster-8.0.18
mysql-cluster-8.0.19

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "5.6.0"
            },
            {
                "last_affected": "5.6.47"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "5.7.0"
            },
            {
                "last_affected": "5.7.29"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "30"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "31"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "32"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.04"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "18.04"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "19.10"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "20.04"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "7.3"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "9.5"
            }
        ]
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-2780.json"
vanir_signatures 
[
    {
        "id": "CVE-2020-2780-ae38a431",
        "digest": {
            "function_hash": "234973545096922528210342785000362188649",
            "length": 1148.0
        },
        "signature_type": "Function",
        "source": "https://github.com/mariadb/server/commit/9277b6ec1ce8bc195a10b5deb11d65843adf8972",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "client/mysql.cc",
            "function": "handle_sigint"
        }
    },
    {
        "id": "CVE-2020-2780-e2764362",
        "digest": {
            "line_hashes": [
                "303081369024919993563232506314344916531",
                "130116794945325601503239349730864435559",
                "122365314362428787781454851207918666051",
                "338171738259648092311715056506391276245",
                "156930268935665817223232746673897701033",
                "113711930212459216174843154898980819512",
                "119024132091475306669097006647894748011",
                "321824809282384522162154380046647510152",
                "153899746299505889761512211205082497466",
                "96258321309505196318732973633679791325",
                "121688096593630193365101298405912063949",
                "284409361233497479573698941270133544559",
                "155338099222497578906465649689625082296",
                "326497440088908022087048648971286662236",
                "234108896010307442070769778207061222363",
                "81739975972397090346585754524478281591",
                "139077475311002515792033706557601972451",
                "6859481634666634003920197967564407766"
            ],
            "threshold": 0.9
        },
        "signature_type": "Line",
        "source": "https://github.com/mariadb/server/commit/9277b6ec1ce8bc195a10b5deb11d65843adf8972",
        "deprecated": false,
        "signature_version": "v1",
        "target": {
            "file": "client/mysql.cc"
        }
    }
]