Vulnerability in MySQL Connectors of Oracle MySQL Affects Multiple Versions
CVE-2020-2875
Summary
A vulnerability in the MySQL Connectors product of Oracle MySQL allows unauthenticated attackers with network access through multiple protocols to exploit affected versions. This vulnerability, found in Connector/J 8.0.14 and prior, as well as 5.1.48 and prior, necessitates human interaction from an individual other than the attacker. Successful exploitation can lead to unauthorized updates, inserts, or deletions of accessible data, as well as unauthorized read access to sensitive information. Attack attempts can considerably affect additional products reliant on MySQL Connectors, posing a notable risk to data integrity and confidentiality.
Affected Version(s)
MySQL Connectors 8.0.14 and prior
MySQL Connectors 5.1.48 and prior
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved