VDB
CNVD-2023-65514
CNVD-2023-65514
PUBLISHED
CVSS 7.099999904632568 HIGH
Oracle MySQL Server是美国甲骨文(Oracle)公司的一款关系型数据库。 Oracle MySQL Server存在安全漏洞,攻击者可利用该漏洞导致MySQL Server被接管。
Risk Scores
CVSS 3.1
7.099999904632568
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle Corporation | MySQL Server | 5.7.41 and prior, * |
Exploit Intelligence
- CVE-2011-1473 POC script (github-poc)
- CVE-2011-1473 POC script (github-poc)
- A bash script that attempts to flood a server with TLS renegotiations by using the openssl client. See CVE-2011-1473 and CVE-2011-1473 for details. (github-poc)
- A bash script that attempts to flood a server with TLS renegotiations by using the openssl client. See CVE-2011-1473 and CVE-2011-1473 for details. (github-poc)
- zjt674449039/cve-2011-1473 (github-poc)
- zjt674449039/cve-2011-1473 (github-poc)
- A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier. CVE project by @Sn0wAlice (github-poc)
- A carefully crafted If: request header can cause a memory read, or write of a single zero byte, in a pool (heap) memory location beyond the header value sent. This could cause the process to crash. This issue affects Apache HTTP Server 2.4.54 and earlier. CVE project by @Sn0wAlice (github-poc)
- Oracle Advisory (circl)
- https://security.netapp.com/advisory/ntap-20230427-0007/ (circl)
…and 9 more exploits
Timeline
- Oct 6, 2021 PoC Published
- Apr 21, 2023 CVE ID Reserved
- Sep 1, 2023 CVE Published
- Oct 5, 2023 PoC Published
- May 9, 2024 PoC Published
- Apr 28, 2025 PoC Published
- Jul 7, 2025 PoC Published
References
- Oracle Advisory vendor-advisory
- https://security.netapp.com/advisory/ntap-20230427-0007/ url