CVE-2022-21535 — Vulnetix

CVE-2022-21535 PUBLISHED

Vulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: General/Core Client). Supported versions that are affected are 8.0.28 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where MySQL Shell executes to compromise MySQL Shell. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Shell. CVSS 3.1 Base Score 2.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L).

EPSS 0.48% · 65.0th percentile

Risk Scores

EPSS Score

0.48%

65.0th percentile

Affected Products

Vendor	Product	Versions
Bitnami	mysql-shell	0
Bitnami	mysql-shell	0

Timeline

Jul 19, 2022 CVE Published
Jul 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 21, 2022 EPSS Score
Dec 6, 2022 EPSS Score
Jan 21, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 9, 2023 EPSS Score
Apr 24, 2023 EPSS Score
Jun 9, 2023 EPSS Score
Jul 25, 2023 EPSS Score
Sep 10, 2023 EPSS Score

References

Open in Interactive Console →