UBUNTU-CVE-2022-21363

Source
https://ubuntu.com/security/CVE-2022-21363
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2022/UBUNTU-CVE-2022-21363.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2022-21363
Related
Published
2022-01-19T12:15:00Z
Modified
2024-12-18T16:40:47Z
Severity
  • 6.6 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in takeover of MySQL Connectors. CVSS 3.1 Base Score 6.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H).

References

Affected packages

Ubuntu:Pro:14.04:LTS / mysql-connector-java

Package

Name
mysql-connector-java
Purl
pkg:deb/ubuntu/mysql-connector-java?arch=src?distro=esm-infra-legacy/trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.1.25-1
5.1.26-1
5.1.27-1
5.1.28-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / mysql-connector-java

Package

Name
mysql-connector-java
Purl
pkg:deb/ubuntu/mysql-connector-java?arch=src?distro=esm-apps/xenial

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.1.32-1
5.1.38-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / mysql-connector-java

Package

Name
mysql-connector-java
Purl
pkg:deb/ubuntu/mysql-connector-java?arch=src?distro=esm-apps/bionic

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.1.42-1
5.1.44-1
5.1.45-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}