Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2020-14641 - Vulnerability Database
MySQL

MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2020-14641

Medium
Reference: CVE-2020-14641
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-14641
Title: MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).