Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/6534?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "type": "ebuild", "namespace": "dev-db", "name": "mysql", "version": "5.7.34", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "8.0.24", "latest_non_vulnerable_version": "10.2.22", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153832?format=api", "vulnerability_id": "VCID-1773-ea7q-83g8", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2922.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2922.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2922", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42644", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42814", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42824", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00205", "scoring_system": "epss", "scoring_elements": "0.42805", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2922" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835850", "reference_id": "1835850", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835850" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:08Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:08Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:08Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:08Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3708", "reference_id": "RHSA-2019:3708", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3708" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1100", "reference_id": "RHSA-2020:1100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1100" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5503", "reference_id": "RHSA-2020:5503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5655", "reference_id": "RHSA-2020:5655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5660", "reference_id": "RHSA-2020:5660", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5662", "reference_id": "RHSA-2020:5662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2922" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1773-ea7q-83g8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152307?format=api", "vulnerability_id": "VCID-1cdz-dpx8-mbbd", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14575.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14575.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14575", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63199", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63202", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.6319", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63088", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14575" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865954", "reference_id": "1865954", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865954" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:00Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14575" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1cdz-dpx8-mbbd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158421?format=api", "vulnerability_id": "VCID-1f5y-gp7n-1qdp", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2072.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2072.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2072", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2072" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922406", "reference_id": "1922406", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922406" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:36Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:36Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:36Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2072" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1f5y-gp7n-1qdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154030?format=api", "vulnerability_id": "VCID-1gr1-qg4m-yyby", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.18 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2694.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2694.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2694", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0032", "scoring_system": "epss", "scoring_elements": "0.55482", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0032", "scoring_system": "epss", "scoring_elements": "0.55604", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0032", "scoring_system": "epss", "scoring_elements": "0.55617", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0032", "scoring_system": "epss", "scoring_elements": "0.55602", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2694" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796889", "reference_id": "1796889", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796889" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:39Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "3.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2694" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1gr1-qg4m-yyby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158651?format=api", "vulnerability_id": "VCID-1jey-x1st-3yeb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2030.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2030.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2030", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2030" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922392", "reference_id": "1922392", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922392" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:16Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:16Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:16Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2030" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1jey-x1st-3yeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152415?format=api", "vulnerability_id": "VCID-1kke-bz9q-zqgc", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63199", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63202", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.6319", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63088", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14597" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865958", "reference_id": "1865958", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865958" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14597" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1kke-bz9q-zqgc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153849?format=api", "vulnerability_id": "VCID-1ven-g4fs-d7hk", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2928.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2928.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2928", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71666", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71676", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.71679", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0066", "scoring_system": "epss", "scoring_elements": "0.7158", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2928" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830078", "reference_id": "1830078", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830078" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2928" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1ven-g4fs-d7hk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152147?format=api", "vulnerability_id": "VCID-2e1j-kaaw-x7cn", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14663.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14663.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14663", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00681", "scoring_system": "epss", "scoring_elements": "0.72166", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00681", "scoring_system": "epss", "scoring_elements": "0.72174", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00681", "scoring_system": "epss", "scoring_elements": "0.72178", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00681", "scoring_system": "epss", "scoring_elements": "0.72081", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14663" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865972", "reference_id": "1865972", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865972" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:52Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14663" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2e1j-kaaw-x7cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/183647?format=api", "vulnerability_id": "VCID-2qk9-hypt-pkhh", "summary": "Multiple vulnerabilities have been found in MySQL, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2580.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2580.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2580", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.61035", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.61141", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.6115", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00398", "scoring_system": "epss", "scoring_elements": "0.61148", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2580" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796882", "reference_id": "1796882", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796882" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2580" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2qk9-hypt-pkhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152149?format=api", "vulnerability_id": "VCID-2uk7-ddhz-mkdt", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: X Plugin). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14870.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14870.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14870", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14870" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890778", "reference_id": "1890778", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890778" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:07Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:07Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:07Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14870" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2uk7-ddhz-mkdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153765?format=api", "vulnerability_id": "VCID-31wc-vkhj-mufs", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2812.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2812.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30713", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30718", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30732", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0012", "scoring_system": "epss", "scoring_elements": "0.30517", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2812" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830059", "reference_id": "1830059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830059" }, { "reference_url": "https://security.gentoo.org/glsa/202012-08", "reference_id": "202012-08", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://security.gentoo.org/glsa/202012-08" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html", "reference_id": "msg00054.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" }, { "reference_url": "https://usn.ubuntu.com/4603-1/", "reference_id": "USN-4603-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4603-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/", "reference_id": "UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2812" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-31wc-vkhj-mufs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152209?format=api", "vulnerability_id": "VCID-36cz-q7hp-h7c9", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14697.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14697.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14697", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74387", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74397", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.744", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74314", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14697" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865975", "reference_id": "1865975", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865975" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:28Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:28Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:28Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:28Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14697" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-36cz-q7hp-h7c9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158509?format=api", "vulnerability_id": "VCID-39s2-cu1b-dfeq", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2055.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2055.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2055", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2055" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922400", "reference_id": "1922400", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922400" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:49Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:49Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:49Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2055" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-39s2-cu1b-dfeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158420?format=api", "vulnerability_id": "VCID-3wn9-mafy-zkas", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2056.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2056.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2056", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2056" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922419", "reference_id": "1922419", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922419" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:48Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:48Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2056" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3wn9-mafy-zkas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158529?format=api", "vulnerability_id": "VCID-44eg-e1ph-qbe8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2038.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2038.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2038", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2038" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922396", "reference_id": "1922396", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922396" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:07Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:07Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:07Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2038" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44eg-e1ph-qbe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152283?format=api", "vulnerability_id": "VCID-4982-ycrb-wff4", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14837.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14837.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14837", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14837" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890764", "reference_id": "1890764", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890764" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14837" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4982-ycrb-wff4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158520?format=api", "vulnerability_id": "VCID-49sf-kdf5-pfev", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.8 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2046.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2046.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2046", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2046" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922398", "reference_id": "1922398", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922398" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:55Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2046" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-49sf-kdf5-pfev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152259?format=api", "vulnerability_id": "VCID-4asy-t3v6-yqfa", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14680.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14680.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14680", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.68042", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.68139", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.68143", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00539", "scoring_system": "epss", "scoring_elements": "0.6813", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14680" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865974", "reference_id": "1865974", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865974" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:07Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:07Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:07Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:07Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14680" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4asy-t3v6-yqfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152258?format=api", "vulnerability_id": "VCID-4fy5-a99q-cfca", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14539.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14539.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14539", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70912", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70914", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70902", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00632", "scoring_system": "epss", "scoring_elements": "0.70811", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14539" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945", "reference_id": "1865945", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865945" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14539" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4fy5-a99q-cfca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152088?format=api", "vulnerability_id": "VCID-4g78-tx7v-7qb1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14620.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14620.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14620", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.5919", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59306", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59314", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59302", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14620" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865961", "reference_id": "1865961", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865961" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:07Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:07Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:07Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:07Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14620" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4g78-tx7v-7qb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152282?format=api", "vulnerability_id": "VCID-4pe1-uzqa-9yg7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14651.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14651.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14651", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57074", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.572", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57207", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57193", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14651" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865982", "reference_id": "1865982", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865982" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:30Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:30Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:30Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:30Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14651" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4pe1-uzqa-9yg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152228?format=api", "vulnerability_id": "VCID-4puw-e8ca-67hb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14814.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14814.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14814", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14814" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890757", "reference_id": "1890757", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890757" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:00Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:00Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:00Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14814" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4puw-e8ca-67hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153780?format=api", "vulnerability_id": "VCID-4pw2-1r7s-uya6", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59561", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5956", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59571", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59451", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2765" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830052", "reference_id": "1830052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830052" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2765" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4pw2-1r7s-uya6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158463?format=api", "vulnerability_id": "VCID-51kc-gf74-yua2", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2058.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2058.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2058", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2058" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922401", "reference_id": "1922401", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922401" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:46Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:46Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:46Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2058" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-51kc-gf74-yua2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152165?format=api", "vulnerability_id": "VCID-56d3-hdqf-zqf9", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14866.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14866.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14866", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14866" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890774", "reference_id": "1890774", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890774" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:13Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14866" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-56d3-hdqf-zqf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152236?format=api", "vulnerability_id": "VCID-57u2-46wy-b7c1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14773.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14773.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14773", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14773" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890742", "reference_id": "1890742", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890742" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:52Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14773" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-57u2-46wy-b7c1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152365?format=api", "vulnerability_id": "VCID-5dhg-h6y4-y7bp", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14852.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14852.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14852", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14852" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890771", "reference_id": "1890771", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890771" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:22Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:22Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:22Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14852" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5dhg-h6y4-y7bp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152386?format=api", "vulnerability_id": "VCID-5gec-5rvg-wuby", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14760.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14760.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31542", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31734", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31751", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31732", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14760" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890735", "reference_id": "1890735", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890735" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14760" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5gec-5rvg-wuby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153777?format=api", "vulnerability_id": "VCID-5mvx-u5kn-vqef", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plugin). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2572.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2572.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2572", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00305", "scoring_system": "epss", "scoring_elements": "0.54117", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00305", "scoring_system": "epss", "scoring_elements": "0.54248", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00305", "scoring_system": "epss", "scoring_elements": "0.54261", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00305", "scoring_system": "epss", "scoring_elements": "0.54243", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2572" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796879", "reference_id": "1796879", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796879" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:09Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2572" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5mvx-u5kn-vqef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152085?format=api", "vulnerability_id": "VCID-64yu-hcyb-kke8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14809.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14809" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890755", "reference_id": "1890755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890755" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:05Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:05Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:05Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14809" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-64yu-hcyb-kke8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153964?format=api", "vulnerability_id": "VCID-68sk-d3hz-5yg8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2930.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2930.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2930", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.6319", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63199", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63202", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00432", "scoring_system": "epss", "scoring_elements": "0.63088", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2930" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830079", "reference_id": "1830079", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830079" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2930" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-68sk-d3hz-5yg8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153755?format=api", "vulnerability_id": "VCID-6hny-hz46-1khz", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2686.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2686.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2686", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.5522", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.55224", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.55236", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00316", "scoring_system": "epss", "scoring_elements": "0.55098", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2686" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796888", "reference_id": "1796888", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796888" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:51Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:51Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:51Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:01:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2686" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6hny-hz46-1khz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158377?format=api", "vulnerability_id": "VCID-72zj-htuf-hbcb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2012.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2012.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2012", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2012" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922422", "reference_id": "1922422", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922422" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:37Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:37Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2012" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-72zj-htuf-hbcb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153729?format=api", "vulnerability_id": "VCID-7dgq-m43w-nqex", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2627.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2627.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2627", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.62241", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.62351", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.62355", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.62343", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2627" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796905", "reference_id": "1796905", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796905" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:03:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:03:29Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:03:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:03:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2627" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7dgq-m43w-nqex" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152192?format=api", "vulnerability_id": "VCID-7dv3-8ksg-gucc", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14869.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14869.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14869", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14869" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890777", "reference_id": "1890777", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890777" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14869" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7dv3-8ksg-gucc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154047?format=api", "vulnerability_id": "VCID-7rpz-cs3q-1qhg", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2759.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2759.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2759", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2759" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830048", "reference_id": "1830048", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830048" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2759" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7rpz-cs3q-1qhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7008?format=api", "vulnerability_id": "VCID-7tv9-kphk-93ef", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2974.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2974.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2974", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43425", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43434", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43415", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00208", "scoring_system": "epss", "scoring_elements": "0.43258", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2974" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691", "reference_id": "1764691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764691" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4195-1/", "reference_id": "4195-1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://usn.ubuntu.com/4195-1/" }, { "reference_url": "https://usn.ubuntu.com/4195-2/", "reference_id": "4195-2", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://usn.ubuntu.com/4195-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/", "reference_id": "6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/", "reference_id": "7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "reference_id": "cpuoct2019-5072832.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html" }, { "reference_url": "https://security.gentoo.org/glsa/202405-25", "reference_id": "GLSA-202405-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-25" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/", "reference_id": "MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20191017-0002/", "reference_id": "ntap-20191017-0002", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:06Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20191017-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2019-2974" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7tv9-kphk-93ef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153842?format=api", "vulnerability_id": "VCID-7xbu-c6gk-1qe5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.28 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2790.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2790.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2790", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65049", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65157", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.6516", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65149", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2790" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830057", "reference_id": "1830057", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830057" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:24Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:24Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:24Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2790" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7xbu-c6gk-1qe5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8475?format=api", "vulnerability_id": "VCID-7yak-bp2g-s3hb", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2934.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2934.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2934", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.6415", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64263", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64266", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00452", "scoring_system": "epss", "scoring_elements": "0.64253", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2934" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851014", "reference_id": "1851014", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851014" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/", "reference_id": "4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2022.html", "reference_id": "cpujan2022.html", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2934", "reference_id": "CVE-2020-2934", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2934" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4703", "reference_id": "dsa-4703", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://www.debian.org/security/2020/dsa-4703" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/", "reference_id": "MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html", "reference_id": "msg00015.html", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:45Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4960", "reference_id": "RHSA-2020:4960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4961", "reference_id": "RHSA-2020:4961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5134", "reference_id": "RHSA-2021:5134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5134" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2934" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7yak-bp2g-s3hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152281?format=api", "vulnerability_id": "VCID-7z97-pryb-hugp", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78498", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78419", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78502", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01097", "scoring_system": "epss", "scoring_elements": "0.78486", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14672" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890737", "reference_id": "1890737", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890737" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14672" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7z97-pryb-hugp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158414?format=api", "vulnerability_id": "VCID-87ju-4ty8-r3bj", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2028.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2028.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2028", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2028" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922391", "reference_id": "1922391", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922391" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:17Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:17Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2028" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-87ju-4ty8-r3bj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153996?format=api", "vulnerability_id": "VCID-8bc6-7jgn-7qf1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2853.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2853.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2853", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71816", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71826", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7173", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7183", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2853" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830061", "reference_id": "1830061", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830061" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:53Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2853" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8bc6-7jgn-7qf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158335?format=api", "vulnerability_id": "VCID-8exs-ftp9-xkgw", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2081.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2081.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2081", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2081" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922416", "reference_id": "1922416", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922416" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:25Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:25Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2081" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8exs-ftp9-xkgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152318?format=api", "vulnerability_id": "VCID-8fgc-gvyy-fkac", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14786.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14786.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14786", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14786" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890746", "reference_id": "1890746", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890746" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14786" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8fgc-gvyy-fkac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9033?format=api", "vulnerability_id": "VCID-8k8u-ub3z-47fr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2154.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2154.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2154", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.28963", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29173", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29185", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.29166", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2154" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2154", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2154" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951752", "reference_id": "1951752", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951752" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://security.gentoo.org/glsa/202105-28", "reference_id": "202105-28", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-28" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988428", "reference_id": "988428", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988428" }, { "reference_url": "https://security.archlinux.org/ASA-202105-14", "reference_id": "ASA-202105-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202105-14" }, { "reference_url": "https://security.archlinux.org/AVG-1882", "reference_id": "AVG-1882", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1882" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2021.html", "reference_id": "cpuapr2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK/", "reference_id": "DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT/", "reference_id": "GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210513-0002/", "reference_id": "ntap-20210513-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210513-0002/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE/", "reference_id": "PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:52:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1007", "reference_id": "RHSA-2022:1007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1010", "reference_id": "RHSA-2022:1010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1556", "reference_id": "RHSA-2022:1556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1557", "reference_id": "RHSA-2022:1557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4818", "reference_id": "RHSA-2022:4818", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6821", "reference_id": "RHSA-2023:6821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6821" }, { "reference_url": "https://usn.ubuntu.com/4952-1/", "reference_id": "USN-4952-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4952-1/" }, { "reference_url": "https://usn.ubuntu.com/5022-3/", "reference_id": "USN-5022-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5022-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2154" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8k8u-ub3z-47fr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158649?format=api", "vulnerability_id": "VCID-8q3p-dmw9-y3g1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2021.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2021.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2021", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.51799", "scoring_system": "epss", "scoring_elements": "0.97962", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.51799", "scoring_system": "epss", "scoring_elements": "0.97971", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.51799", "scoring_system": "epss", "scoring_elements": "0.9797", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.51799", "scoring_system": "epss", "scoring_elements": "0.97969", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2021" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922388", "reference_id": "1922388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922388" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:27Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:27Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2021" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8q3p-dmw9-y3g1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153936?format=api", "vulnerability_id": "VCID-8zf8-kgs8-c7gh", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2679.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2679.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2679", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60741", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60849", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60856", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60846", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2679" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796887", "reference_id": "1796887", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796887" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:02Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2679" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8zf8-kgs8-c7gh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153707?format=api", "vulnerability_id": "VCID-9yz4-rktz-fffz", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.47 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2814.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2814.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2814", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00122", "scoring_system": "epss", "scoring_elements": "0.31097", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00122", "scoring_system": "epss", "scoring_elements": "0.309", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00122", "scoring_system": "epss", "scoring_elements": "0.31096", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00122", "scoring_system": "epss", "scoring_elements": "0.31112", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2814" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830060", "reference_id": "1830060", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830060" }, { "reference_url": "https://security.gentoo.org/glsa/202012-08", "reference_id": "202012-08", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://security.gentoo.org/glsa/202012-08" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html", "reference_id": "msg00054.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" }, { "reference_url": "https://usn.ubuntu.com/4603-1/", "reference_id": "USN-4603-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4603-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/", "reference_id": "UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:04:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2814" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9yz4-rktz-fffz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153697?format=api", "vulnerability_id": "VCID-a3na-sah1-zuhf", "summary": "Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.3.28 and prior, 7.4.27 and prior, 7.5.17 and prior, 7.6.13 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Cluster as well as unauthorized update, insert or delete access to some of MySQL Cluster accessible data. CVSS 3.0 Base Score 6.3 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0041", "scoring_system": "epss", "scoring_elements": "0.61769", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0041", "scoring_system": "epss", "scoring_elements": "0.61872", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0041", "scoring_system": "epss", "scoring_elements": "0.61878", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0041", "scoring_system": "epss", "scoring_elements": "0.6187", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2768" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:49Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:49Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:49Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2768" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a3na-sah1-zuhf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152108?format=api", "vulnerability_id": "VCID-aanc-ymtk-ckhy", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14873.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14873.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14873", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14873" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890779", "reference_id": "1890779", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890779" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:06Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:06Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:06Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14873" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aanc-ymtk-ckhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152091?format=api", "vulnerability_id": "VCID-ac1d-fn3t-gbac", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14868.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14868.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14868", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14868" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890776", "reference_id": "1890776", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890776" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:10Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:10Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:10Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14868" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ac1d-fn3t-gbac" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154032?format=api", "vulnerability_id": "VCID-af5x-h8jg-v3a3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2895.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2895.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2895", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2895" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830066", "reference_id": "1830066", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830066" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2895" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-af5x-h8jg-v3a3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153710?format=api", "vulnerability_id": "VCID-ampn-g36f-qqg1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2660.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2660.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2660", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60741", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60849", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60856", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60846", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2660" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796886", "reference_id": "1796886", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796886" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:29Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:02:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2660" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ampn-g36f-qqg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158356?format=api", "vulnerability_id": "VCID-aw43-d77z-dqc9", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2024.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2024.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2024", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.70969", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71069", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71072", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71059", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2024" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922390", "reference_id": "1922390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922390" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:23Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:23Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:23Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2024" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aw43-d77z-dqc9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153728?format=api", "vulnerability_id": "VCID-ayxm-p93v-qudf", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2570.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2570.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2570", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53055", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53184", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53198", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00294", "scoring_system": "epss", "scoring_elements": "0.53183", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2570" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798559", "reference_id": "1798559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798559" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:13Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2570" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ayxm-p93v-qudf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158714?format=api", "vulnerability_id": "VCID-b1uu-6pra-xqbc", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2019.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2019.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2019", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51909", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51924", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51781", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51911", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2019" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922386", "reference_id": "1922386", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922386" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2019" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b1uu-6pra-xqbc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158530?format=api", "vulnerability_id": "VCID-bax6-zd1f-pkey", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Client accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Client. CVSS 3.1 Base Score 4.2 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2010.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2010.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2010", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00364", "scoring_system": "epss", "scoring_elements": "0.58986", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00364", "scoring_system": "epss", "scoring_elements": "0.58873", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00364", "scoring_system": "epss", "scoring_elements": "0.58996", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00364", "scoring_system": "epss", "scoring_elements": "0.58985", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2010" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922383", "reference_id": "1922383", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922383" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:40Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:40Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210622-0001/", "reference_id": "ntap-20210622-0001", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210622-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:40Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2010" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bax6-zd1f-pkey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152239?format=api", "vulnerability_id": "VCID-bdq3-9b1x-u3em", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62107", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62217", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.6222", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62208", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14632" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865965", "reference_id": "1865965", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865965" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:55Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:55Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14632" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bdq3-9b1x-u3em" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158605?format=api", "vulnerability_id": "VCID-bduk-59hd-mbf8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2042.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2042.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2042", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33507", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33684", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33709", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00138", "scoring_system": "epss", "scoring_elements": "0.33687", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2042" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922397", "reference_id": "1922397", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922397" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2042" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bduk-59hd-mbf8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154098?format=api", "vulnerability_id": "VCID-bn45-drtr-3bcu", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2923.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2923.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2923", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2923" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830074", "reference_id": "1830074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830074" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2923" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bn45-drtr-3bcu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158362?format=api", "vulnerability_id": "VCID-bp9y-2g8a-zqhu", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2011.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2011.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2011", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02101", "scoring_system": "epss", "scoring_elements": "0.84485", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.02101", "scoring_system": "epss", "scoring_elements": "0.84429", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.02101", "scoring_system": "epss", "scoring_elements": "0.84493", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.02101", "scoring_system": "epss", "scoring_elements": "0.84484", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2011" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922384", "reference_id": "1922384", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922384" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210622-0001/", "reference_id": "ntap-20210622-0001", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210622-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2327", "reference_id": "RHSA-2019:2327", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2327" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2011" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bp9y-2g8a-zqhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152344?format=api", "vulnerability_id": "VCID-bvq1-9t83-b3eh", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14702.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14702.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14702", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50316", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50454", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50468", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00265", "scoring_system": "epss", "scoring_elements": "0.50449", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14702" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865976", "reference_id": "1865976", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865976" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:46:24Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:46:24Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:46:24Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:46:24Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14702" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bvq1-9t83-b3eh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153819?format=api", "vulnerability_id": "VCID-c97k-dttp-17d2", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2901.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2901.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2901", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2901" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830070", "reference_id": "1830070", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830070" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2901" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c97k-dttp-17d2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158519?format=api", "vulnerability_id": "VCID-cut9-sjrw-wqfj", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.50 and prior, 5.7.30 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2001.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2001.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2001", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58127", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58246", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58256", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.5824", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2001" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922379", "reference_id": "1922379", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922379" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2001" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cut9-sjrw-wqfj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152348?format=api", "vulnerability_id": "VCID-d685-mxpn-cfc8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14804.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14804.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59403", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59515", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59524", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59513", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14804" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890754", "reference_id": "1890754", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890754" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14804" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d685-mxpn-cfc8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154078?format=api", "vulnerability_id": "VCID-dper-51k6-eke1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2779.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2779.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2779", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.67003", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.67017", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00512", "scoring_system": "epss", "scoring_elements": "0.66911", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2779" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830055", "reference_id": "1830055", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830055" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:34Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2779" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dper-51k6-eke1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158348?format=api", "vulnerability_id": "VCID-drxz-zs76-c7a5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2070.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2070.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2070", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2070" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922405", "reference_id": "1922405", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922405" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:37Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:37Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2070" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drxz-zs76-c7a5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158375?format=api", "vulnerability_id": "VCID-e37r-xb89-37cu", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2009.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2009.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2009", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00199", "scoring_system": "epss", "scoring_elements": "0.42153", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00199", "scoring_system": "epss", "scoring_elements": "0.42163", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00199", "scoring_system": "epss", "scoring_elements": "0.42142", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00199", "scoring_system": "epss", "scoring_elements": "0.41978", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2009" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922424", "reference_id": "1922424", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922424" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:41Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:41Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:41Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:41Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:41Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2009" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e37r-xb89-37cu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152298?format=api", "vulnerability_id": "VCID-exmj-vexz-1qan", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14576.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14576.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14576", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71626", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71629", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71616", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.7153", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14576" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865955", "reference_id": "1865955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865955" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14576" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-exmj-vexz-1qan" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152201?format=api", "vulnerability_id": "VCID-f8b4-hzvg-e3g8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14634.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14634.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14634", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48552", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48695", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48708", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.4869", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14634" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865967", "reference_id": "1865967", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865967" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:52Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14634" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f8b4-hzvg-e3g8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152315?format=api", "vulnerability_id": "VCID-fjyp-4em8-eugj", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14827.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14827.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14827", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00445", "scoring_system": "epss", "scoring_elements": "0.63865", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00445", "scoring_system": "epss", "scoring_elements": "0.63981", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00445", "scoring_system": "epss", "scoring_elements": "0.63982", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00445", "scoring_system": "epss", "scoring_elements": "0.63968", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14827" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890759", "reference_id": "1890759", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890759" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14827" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fjyp-4em8-eugj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152094?format=api", "vulnerability_id": "VCID-fkqg-wcub-kyax", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.1 Base Score 4.9 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14641.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14641.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14641", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00446", "scoring_system": "epss", "scoring_elements": "0.63887", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00446", "scoring_system": "epss", "scoring_elements": "0.64001", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00446", "scoring_system": "epss", "scoring_elements": "0.64003", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00446", "scoring_system": "epss", "scoring_elements": "0.63989", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14641" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865968", "reference_id": "1865968", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865968" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:40Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:40Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:40Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14641" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fkqg-wcub-kyax" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153799?format=api", "vulnerability_id": "VCID-fpav-1cda-zfct", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2763.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2763.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2763", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2763" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830051", "reference_id": "1830051", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830051" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:55Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2763" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fpav-1cda-zfct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152180?format=api", "vulnerability_id": "VCID-fsy7-7usp-3ba1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14586.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14586.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14586", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54783", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54799", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54782", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00311", "scoring_system": "epss", "scoring_elements": "0.54658", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14586" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865956", "reference_id": "1865956", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865956" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:45Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14586" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fsy7-7usp-3ba1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7828?format=api", "vulnerability_id": "VCID-g158-hn6h-2fft", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0118", "scoring_system": "epss", "scoring_elements": "0.79163", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0118", "scoring_system": "epss", "scoring_elements": "0.79237", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0118", "scoring_system": "epss", "scoring_elements": "0.79241", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0118", "scoring_system": "epss", "scoring_elements": "0.79227", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14765" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890738", "reference_id": "1890738", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890738" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/", "reference_id": "JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00027.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/", "reference_id": "OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14765" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g158-hn6h-2fft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154086?format=api", "vulnerability_id": "VCID-g5xp-mqst-s7gq", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Compiling). Supported versions that are affected are 5.7.28 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65049", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65157", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.6516", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00471", "scoring_system": "epss", "scoring_elements": "0.65149", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2806" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830081", "reference_id": "1830081", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830081" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:13Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2806" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g5xp-mqst-s7gq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152153?format=api", "vulnerability_id": "VCID-g72c-766j-rfga", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14848.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14848.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14848", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14848" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890770", "reference_id": "1890770", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890770" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:27Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:27Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14848" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g72c-766j-rfga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158391?format=api", "vulnerability_id": "VCID-g9bt-pc77-a7gp", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2031.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2031.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2031", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2031" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922393", "reference_id": "1922393", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922393" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:14Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:14Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:14Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2031" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g9bt-pc77-a7gp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153859?format=api", "vulnerability_id": "VCID-gfps-bt8r-v3h8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2577.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2577.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2577", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47842", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47984", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47999", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00243", "scoring_system": "epss", "scoring_elements": "0.47983", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2577" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796880", "reference_id": "1796880", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796880" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:02Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2577" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gfps-bt8r-v3h8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153979?format=api", "vulnerability_id": "VCID-gmus-a2hu-q3fj", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2903.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2903.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2903", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830071", "reference_id": "1830071", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830071" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2903" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmus-a2hu-q3fj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154042?format=api", "vulnerability_id": "VCID-gsxh-9pp8-w7ch", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2897.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2897.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2897", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2897" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830068", "reference_id": "1830068", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830068" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2897" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gsxh-9pp8-w7ch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/156941?format=api", "vulnerability_id": "VCID-gxys-bk7f-53d3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 3.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1998.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1998.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-1998", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51607", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.5161", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51621", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51479", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-1998" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922378", "reference_id": "1922378", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922378" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:54Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:54Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:54Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:54Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:54Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-1998" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gxys-bk7f-53d3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152345?format=api", "vulnerability_id": "VCID-gzjk-g4sa-a3ft", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plug-in). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14591.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14591.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14591", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.64617", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.64728", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.64732", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00462", "scoring_system": "epss", "scoring_elements": "0.6472", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14591" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865957", "reference_id": "1865957", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865957" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:39Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14591" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gzjk-g4sa-a3ft" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158554?format=api", "vulnerability_id": "VCID-h8ud-x7cm-aufy", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2016.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2016.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2016", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58127", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58246", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.58256", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00354", "scoring_system": "epss", "scoring_elements": "0.5824", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2016" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922420", "reference_id": "1922420", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922420" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:32Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:32Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:32Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2016" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h8ud-x7cm-aufy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153812?format=api", "vulnerability_id": "VCID-h8xy-1kvt-j3gr", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2573.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2573.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2573", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00696", "scoring_system": "epss", "scoring_elements": "0.72481", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00696", "scoring_system": "epss", "scoring_elements": "0.72491", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00696", "scoring_system": "epss", "scoring_elements": "0.72496", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00696", "scoring_system": "epss", "scoring_elements": "0.724", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2573" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798576", "reference_id": "1798576", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798576" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:05Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:05Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:05Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:05Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2573" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h8xy-1kvt-j3gr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158533?format=api", "vulnerability_id": "VCID-hqup-msug-q7hm", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2020.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2020.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2020", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01766", "scoring_system": "epss", "scoring_elements": "0.83106", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01766", "scoring_system": "epss", "scoring_elements": "0.83111", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01766", "scoring_system": "epss", "scoring_elements": "0.83102", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01766", "scoring_system": "epss", "scoring_elements": "0.83041", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2020" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922387", "reference_id": "1922387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922387" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:28Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:28Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:28Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:28Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:28Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2020" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hqup-msug-q7hm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153744?format=api", "vulnerability_id": "VCID-j3dj-q7ez-zueg", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2588.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2588.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2588", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60741", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60849", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60856", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00394", "scoring_system": "epss", "scoring_elements": "0.60846", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2588" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796884", "reference_id": "1796884", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796884" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:48Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:48Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:48Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2588" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j3dj-q7ez-zueg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153847?format=api", "vulnerability_id": "VCID-jasq-uz4z-bqcg", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication GCS). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2926.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2926.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2926", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.47219", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.47215", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.47233", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00237", "scoring_system": "epss", "scoring_elements": "0.47078", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2926" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830077", "reference_id": "1830077", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830077" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2926" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jasq-uz4z-bqcg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152276?format=api", "vulnerability_id": "VCID-jf5k-d67w-eybn", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14860.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14860.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14860", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00189", "scoring_system": "epss", "scoring_elements": "0.40629", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00189", "scoring_system": "epss", "scoring_elements": "0.40806", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00189", "scoring_system": "epss", "scoring_elements": "0.4082", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00189", "scoring_system": "epss", "scoring_elements": "0.40796", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14860" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890772", "reference_id": "1890772", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890772" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:17Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:17Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14860" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jf5k-d67w-eybn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152082?format=api", "vulnerability_id": "VCID-jpfn-85v8-6yd3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14793.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14793.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14793", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.7528", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.752", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75284", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75271", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14793" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890750", "reference_id": "1890750", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890750" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14793" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jpfn-85v8-6yd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8460?format=api", "vulnerability_id": "VCID-jrq4-25yz-ubfh", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2875.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2875.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2875", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0069", "scoring_system": "epss", "scoring_elements": "0.72281", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0069", "scoring_system": "epss", "scoring_elements": "0.72371", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0069", "scoring_system": "epss", "scoring_elements": "0.72377", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0069", "scoring_system": "epss", "scoring_elements": "0.72363", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2875" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851019", "reference_id": "1851019", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851019" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/", "reference_id": "4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2875", "reference_id": "CVE-2020-2875", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2875" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4703", "reference_id": "dsa-4703", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://www.debian.org/security/2020/dsa-4703" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/", "reference_id": "MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html", "reference_id": "msg00015.html", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:02:06Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4960", "reference_id": "RHSA-2020:4960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4961", "reference_id": "RHSA-2020:4961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5134", "reference_id": "RHSA-2021:5134", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5134" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2875" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrq4-25yz-ubfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7833?format=api", "vulnerability_id": "VCID-jrw2-943h-5bbr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14789.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14789.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14789", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70297", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70399", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70401", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70387", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14789" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14789", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14789" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890747", "reference_id": "1890747", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890747" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/", "reference_id": "JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/", "reference_id": "OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14789" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrw2-943h-5bbr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158473?format=api", "vulnerability_id": "VCID-jt5c-qgw8-v7a5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2076.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2076.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2076", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57138", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57264", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.5727", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57256", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2076" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922407", "reference_id": "1922407", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922407" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:33Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:33Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:33Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2076" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jt5c-qgw8-v7a5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152330?format=api", "vulnerability_id": "VCID-juy2-3vcv-kycw", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14839.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14839.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14839", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14839" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890766", "reference_id": "1890766", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890766" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:37Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:37Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14839" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-juy2-3vcv-kycw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153885?format=api", "vulnerability_id": "VCID-jvp3-ws1c-23a5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2762.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2762.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2762", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59561", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5956", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59571", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59451", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2762" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830050", "reference_id": "1830050", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830050" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:56Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2762" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jvp3-ws1c-23a5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152293?format=api", "vulnerability_id": "VCID-jvtg-7sgb-eff7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14846.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14846.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14846", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71337", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71436", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71437", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71425", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14846" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890769", "reference_id": "1890769", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890769" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14846" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jvtg-7sgb-eff7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158687?format=api", "vulnerability_id": "VCID-jzbk-tgz3-ekew", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2060.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2060.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2060", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2060" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922402", "reference_id": "1922402", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922402" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:44Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:44Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2060" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzbk-tgz3-ekew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153940?format=api", "vulnerability_id": "VCID-k4tu-xdxh-cyed", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.27 and prior and 8.0.17 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2752.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2752.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2752", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.46028", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45883", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.46021", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.46035", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2752" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835849", "reference_id": "1835849", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835849" }, { "reference_url": "https://security.gentoo.org/glsa/202012-08", "reference_id": "202012-08", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://security.gentoo.org/glsa/202012-08" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html", "reference_id": "msg00054.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5503", "reference_id": "RHSA-2020:5503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5655", "reference_id": "RHSA-2020:5655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5660", "reference_id": "RHSA-2020:5660", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5662", "reference_id": "RHSA-2020:5662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://usn.ubuntu.com/4603-1/", "reference_id": "USN-4603-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4603-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/", "reference_id": "UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:00:13Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2752" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k4tu-xdxh-cyed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152364?format=api", "vulnerability_id": "VCID-ka5j-p1rk-8yfv", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14643.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14643.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14643", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57193", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.572", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57207", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0034", "scoring_system": "epss", "scoring_elements": "0.57074", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14643" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865969", "reference_id": "1865969", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865969" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:39Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14643" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ka5j-p1rk-8yfv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152124?format=api", "vulnerability_id": "VCID-kazq-p85w-53dy", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14791.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14791.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14791", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62665", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62671", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62659", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62558", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14791" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890749", "reference_id": "1890749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890749" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:28Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14791" ], "risk_score": 1.0, "exploitability": "0.5", "weighted_severity": "2.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kazq-p85w-53dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153845?format=api", "vulnerability_id": "VCID-kfwe-6b4z-k3e4", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Group Replication Plugin). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2921.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2921.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2921", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49479", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49621", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49634", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00258", "scoring_system": "epss", "scoring_elements": "0.49616", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2921" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830073", "reference_id": "1830073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830073" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2921" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kfwe-6b4z-k3e4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152363?format=api", "vulnerability_id": "VCID-ksf9-grm9-7ydv", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Audit). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14631.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14631.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14631", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.5919", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59306", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59314", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59302", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14631" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865964", "reference_id": "1865964", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865964" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:57Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:57Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:57Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:57Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14631" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksf9-grm9-7ydv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153958?format=api", "vulnerability_id": "VCID-kz2j-krd1-u7bd", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2893.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2893.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2893", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2893" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830064", "reference_id": "1830064", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830064" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:35Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2893" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kz2j-krd1-u7bd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158636?format=api", "vulnerability_id": "VCID-kz2z-y58y-pug8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.0 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2048.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2048.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2048", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.54911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.55034", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.55049", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00314", "scoring_system": "epss", "scoring_elements": "0.55033", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2048" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922399", "reference_id": "1922399", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922399" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:54Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:54Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:54Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2048" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kz2z-y58y-pug8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152370?format=api", "vulnerability_id": "VCID-m1t7-qjpp-sfgf", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14547.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14547.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14547", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14547" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865948", "reference_id": "1865948", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865948" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:36Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14547" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m1t7-qjpp-sfgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152137?format=api", "vulnerability_id": "VCID-maqx-6218-23e4", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14559.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14559.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14559", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00459", "scoring_system": "epss", "scoring_elements": "0.64644", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00459", "scoring_system": "epss", "scoring_elements": "0.64648", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00459", "scoring_system": "epss", "scoring_elements": "0.64636", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00459", "scoring_system": "epss", "scoring_elements": "0.64534", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14559" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865951", "reference_id": "1865951", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865951" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:17Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14559" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-maqx-6218-23e4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152233?format=api", "vulnerability_id": "VCID-mp25-qmdx-jyep", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14725.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14725.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14725", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59403", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59515", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59524", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00372", "scoring_system": "epss", "scoring_elements": "0.59513", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14725" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865977", "reference_id": "1865977", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865977" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:36Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:36Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200731-0006/", "reference_id": "ntap-20200731-0006", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:45:36Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200731-0006/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14725" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mp25-qmdx-jyep" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158562?format=api", "vulnerability_id": "VCID-mub3-zear-cqe7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2002.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2002.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2002", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00145", "scoring_system": "epss", "scoring_elements": "0.34634", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00145", "scoring_system": "epss", "scoring_elements": "0.34819", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00145", "scoring_system": "epss", "scoring_elements": "0.34838", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00145", "scoring_system": "epss", "scoring_elements": "0.34813", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2002" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922380", "reference_id": "1922380", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922380" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:49Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:49Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:49Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:49Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:49Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2002" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mub3-zear-cqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158587?format=api", "vulnerability_id": "VCID-mw9q-85k6-y7cy", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2006.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2006.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2006", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78678", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78681", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78664", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78598", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2006" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922381", "reference_id": "1922381", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922381" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:44Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:44Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:44Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210622-0001/", "reference_id": "ntap-20210622-0001", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210622-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:44Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2006" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mw9q-85k6-y7cy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152238?format=api", "vulnerability_id": "VCID-n37g-kwzh-jfdq", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14845.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14845.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14845", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14845" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890768", "reference_id": "1890768", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890768" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:31Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:31Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:31Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14845" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n37g-kwzh-jfdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153960?format=api", "vulnerability_id": "VCID-n685-ddjg-vub7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2892.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2892.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2892", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59561", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5956", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59571", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59451", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2892" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830062", "reference_id": "1830062", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830062" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2892" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n685-ddjg-vub7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153871?format=api", "vulnerability_id": "VCID-ngvm-btzf-c3g7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2904.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2904.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2904", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2904" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830072", "reference_id": "1830072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830072" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:19Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2904" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ngvm-btzf-c3g7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9036?format=api", "vulnerability_id": "VCID-nqq9-wney-yyfv", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2166.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2166.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2166", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0113", "scoring_system": "epss", "scoring_elements": "0.78737", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0113", "scoring_system": "epss", "scoring_elements": "0.78815", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0113", "scoring_system": "epss", "scoring_elements": "0.78819", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0113", "scoring_system": "epss", "scoring_elements": "0.78802", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2166" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951755", "reference_id": "1951755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951755" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://security.gentoo.org/glsa/202105-28", "reference_id": "202105-28", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-28" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987325", "reference_id": "987325", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987325" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988428", "reference_id": "988428", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988428" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ/", "reference_id": "AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ/" }, { "reference_url": "https://security.archlinux.org/ASA-202105-14", "reference_id": "ASA-202105-14", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202105-14" }, { "reference_url": "https://security.archlinux.org/AVG-1882", "reference_id": "AVG-1882", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1882" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2021.html", "reference_id": "cpuapr2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK/", "reference_id": "DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPA3CTGXPVWKHMCQDVURK4ETH7GE34KK/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT/", "reference_id": "GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GAU7KW36A6TQGKG3RUITYSVUFIHBY3OT/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7/", "reference_id": "JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210513-0002/", "reference_id": "ntap-20210513-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210513-0002/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE/", "reference_id": "PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEF5CRATUGQZUSQU63MHQIDZPOLHW2VE/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1007", "reference_id": "RHSA-2022:1007", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1007" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1010", "reference_id": "RHSA-2022:1010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1556", "reference_id": "RHSA-2022:1556", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1556" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1557", "reference_id": "RHSA-2022:1557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:4818", "reference_id": "RHSA-2022:4818", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:4818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6821", "reference_id": "RHSA-2023:6821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6821" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ/", "reference_id": "UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ/" }, { "reference_url": "https://usn.ubuntu.com/4952-1/", "reference_id": "USN-4952-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4952-1/" }, { "reference_url": "https://usn.ubuntu.com/5022-3/", "reference_id": "USN-5022-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5022-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2166" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nqq9-wney-yyfv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152212?format=api", "vulnerability_id": "VCID-nv57-bkjj-13cq", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where the MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 8.0 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14878.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14878.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14878", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00897", "scoring_system": "epss", "scoring_elements": "0.76076", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00897", "scoring_system": "epss", "scoring_elements": "0.76155", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00897", "scoring_system": "epss", "scoring_elements": "0.76161", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00897", "scoring_system": "epss", "scoring_elements": "0.76148", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14878" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890780", "reference_id": "1890780", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890780" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:53:51Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:53:51Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:53:51Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14878" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nv57-bkjj-13cq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152140?format=api", "vulnerability_id": "VCID-nvfw-pmqb-c3dz", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14790.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14790.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14790", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14790" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890748", "reference_id": "1890748", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890748" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:29Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14790" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nvfw-pmqb-c3dz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152270?format=api", "vulnerability_id": "VCID-pq56-6fr4-sudy", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14867.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14867.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14867", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42747", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42916", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42926", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42907", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14867" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890775", "reference_id": "1890775", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890775" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:11Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:11Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:11Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14867" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pq56-6fr4-sudy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152309?format=api", "vulnerability_id": "VCID-qdy7-899w-1beu", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14619.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14619.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14619", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.6836", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.68365", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.68353", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00546", "scoring_system": "epss", "scoring_elements": "0.68265", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14619" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865960", "reference_id": "1865960", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865960" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14619" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qdy7-899w-1beu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152376?format=api", "vulnerability_id": "VCID-qg23-yk8c-hya9", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14568.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14568.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14568", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.6356", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63564", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63552", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63449", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14568" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865953", "reference_id": "1865953", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865953" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:08Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14568" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qg23-yk8c-hya9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158652?format=api", "vulnerability_id": "VCID-qmrc-tmaw-63dt", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2022.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2022.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2022", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65637", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.6564", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.65629", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0048", "scoring_system": "epss", "scoring_elements": "0.6553", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2022" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2022", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-2022" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922389", "reference_id": "1922389", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922389" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:25Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:25Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:25Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:25Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2022" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrc-tmaw-63dt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153861?format=api", "vulnerability_id": "VCID-qvst-eue8-jqcy", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2780.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2780.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2780", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00507", "scoring_system": "epss", "scoring_elements": "0.6671", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00507", "scoring_system": "epss", "scoring_elements": "0.66816", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00507", "scoring_system": "epss", "scoring_elements": "0.66817", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00507", "scoring_system": "epss", "scoring_elements": "0.66803", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2780" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830056", "reference_id": "1830056", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830056" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2780" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qvst-eue8-jqcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153775?format=api", "vulnerability_id": "VCID-qvzn-dyvx-qbaa", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Logging). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2770.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2770.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2770", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71816", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71826", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7173", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7183", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2770" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830053", "reference_id": "1830053", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830053" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2770" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qvzn-dyvx-qbaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152411?format=api", "vulnerability_id": "VCID-r5ys-h7yb-muh5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14829.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14829.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14829", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14829" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890761", "reference_id": "1890761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890761" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:49Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:49Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:49Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14829" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r5ys-h7yb-muh5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8474?format=api", "vulnerability_id": "VCID-r6yu-stdr-t3dj", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2933.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2933.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2933", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73163", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73254", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.73256", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.7324", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2875" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2933" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2934" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851022", "reference_id": "1851022", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1851022" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/", "reference_id": "4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4QDR2WOUETBT76WAO5NNCCXSAM3AGG3D/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2933", "reference_id": "CVE-2020-2933", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2933" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4703", "reference_id": "dsa-4703", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://www.debian.org/security/2020/dsa-4703" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/", "reference_id": "MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDKQVPFT4Z4SFPBH6YNFMJOXKS2YYKHA/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html", "reference_id": "msg00015.html", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:00:47Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/06/msg00015.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4960", "reference_id": "RHSA-2020:4960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4961", "reference_id": "RHSA-2020:4961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4961" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2933" ], "risk_score": 1.0, "exploitability": "0.5", "weighted_severity": "2.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r6yu-stdr-t3dj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152080?format=api", "vulnerability_id": "VCID-rac8-q5nd-p7de", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14769.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14769.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14769", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81189", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81199", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.81191", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01438", "scoring_system": "epss", "scoring_elements": "0.8113", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14769" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890739", "reference_id": "1890739", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890739" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:57Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14769" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rac8-q5nd-p7de" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152399?format=api", "vulnerability_id": "VCID-rbar-11vv-43hs", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14861.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14861.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14861", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14861" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890773", "reference_id": "1890773", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890773" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:15Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:15Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:15Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14861" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rbar-11vv-43hs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152377?format=api", "vulnerability_id": "VCID-rnjk-r2u4-sybn", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71626", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71629", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.71616", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00658", "scoring_system": "epss", "scoring_elements": "0.7153", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14550" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865949", "reference_id": "1865949", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865949" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210622-0001/", "reference_id": "ntap-20210622-0001", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210622-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1258", "reference_id": "RHSA-2019:1258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2327", "reference_id": "RHSA-2019:2327", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2327" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:32Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14550" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rnjk-r2u4-sybn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152096?format=api", "vulnerability_id": "VCID-rqw5-knwa-jqb1", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14794.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14794.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14794", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14794" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890751", "reference_id": "1890751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890751" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14794" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqw5-knwa-jqb1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152099?format=api", "vulnerability_id": "VCID-rw4s-axtc-ybg3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 2.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14771.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14771.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14771", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44818", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.4497", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44982", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44968", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14771" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890740", "reference_id": "1890740", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890740" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:55Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:55Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "2.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:55Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14771" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rw4s-axtc-ybg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154102?format=api", "vulnerability_id": "VCID-ry5d-pc5y-rbgu", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2760.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2760.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29368", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29168", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29391", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29378", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2760" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830082", "reference_id": "1830082", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830082" }, { "reference_url": "https://security.gentoo.org/glsa/202012-08", "reference_id": "202012-08", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://security.gentoo.org/glsa/202012-08" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html", "reference_id": "msg00054.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00054.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" }, { "reference_url": "https://usn.ubuntu.com/4603-1/", "reference_id": "USN-4603-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4603-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/", "reference_id": "UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UW2ED32VEUHXFN2J3YQE27JIBV4SC2PI/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2760" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ry5d-pc5y-rbgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152343?format=api", "vulnerability_id": "VCID-ryhg-ugzk-jqha", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14654.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14654.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14654", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.5919", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59306", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59314", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59302", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14654" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865970", "reference_id": "1865970", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865970" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:27Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:27Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:27Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14654" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ryhg-ugzk-jqha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152129?format=api", "vulnerability_id": "VCID-s1jv-124a-xyfr", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14614.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14614.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14614", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.6356", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63564", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63552", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00436", "scoring_system": "epss", "scoring_elements": "0.63449", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14614" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865959", "reference_id": "1865959", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865959" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14614" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s1jv-124a-xyfr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152289?format=api", "vulnerability_id": "VCID-s25a-dzf2-vubm", "summary": "Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: NDBCluster Plugin). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Cluster accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Cluster. CVSS 3.1 Base Score 4.6 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L).", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14853", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45327", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45475", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45486", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00225", "scoring_system": "epss", "scoring_elements": "0.45477", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14853" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:21Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:21Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:21Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14853" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s25a-dzf2-vubm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158615?format=api", "vulnerability_id": "VCID-s5dr-1j95-63dh", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2061.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2061.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2061", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2061" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922403", "reference_id": "1922403", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922403" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:42Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:42Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:42Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2061" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-s5dr-1j95-63dh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154041?format=api", "vulnerability_id": "VCID-sp8y-udju-qkd8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.28 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2589.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2589.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2589", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00343", "scoring_system": "epss", "scoring_elements": "0.57317", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00343", "scoring_system": "epss", "scoring_elements": "0.57442", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00343", "scoring_system": "epss", "scoring_elements": "0.5745", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00343", "scoring_system": "epss", "scoring_elements": "0.57435", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2589" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796885", "reference_id": "1796885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796885" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:46Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:46Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:46Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:46Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2589" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sp8y-udju-qkd8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152320?format=api", "vulnerability_id": "VCID-srj3-34hq-5bca", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: JSON). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.5919", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59306", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59314", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59302", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14624" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865963", "reference_id": "1865963", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865963" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:03Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:03Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14624" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-srj3-34hq-5bca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152207?format=api", "vulnerability_id": "VCID-szep-pw56-rye7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14821.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14821.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14821", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14821" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890758", "reference_id": "1890758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890758" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:53Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:53Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14821" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-szep-pw56-rye7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152412?format=api", "vulnerability_id": "VCID-t5w4-d75r-yyha", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14799.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14799.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14799", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46349", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46491", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46505", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00233", "scoring_system": "epss", "scoring_elements": "0.46494", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14799" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890752", "reference_id": "1890752", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890752" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:15Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:15Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:15Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14799" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t5w4-d75r-yyha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158559?format=api", "vulnerability_id": "VCID-t8rn-c95t-53c6", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2122.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2122.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2122", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2122" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922411", "reference_id": "1922411", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922411" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:53:22Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:53:22Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:53:22Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2122" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t8rn-c95t-53c6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152200?format=api", "vulnerability_id": "VCID-tc7x-dxd9-6kaj", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14540.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14540.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14540", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14540" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865947", "reference_id": "1865947", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865947" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14540" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tc7x-dxd9-6kaj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152333?format=api", "vulnerability_id": "VCID-tecd-5pp3-7fc5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14830.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14830.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14830", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71337", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71436", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71437", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00651", "scoring_system": "epss", "scoring_elements": "0.71425", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14830" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890762", "reference_id": "1890762", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890762" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:48Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:48Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14830" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tecd-5pp3-7fc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153896?format=api", "vulnerability_id": "VCID-thu3-k5d4-k3ha", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Options). Supported versions that are affected are 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2584.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2584.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2584", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65349", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.6546", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.65461", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00476", "scoring_system": "epss", "scoring_elements": "0.6545", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2584" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796883", "reference_id": "1796883", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796883" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:52Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:52Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:52Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:04:52Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2584" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-thu3-k5d4-k3ha" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152210?format=api", "vulnerability_id": "VCID-thy1-9usv-qkhc", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14891.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14891.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14891", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14891" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890782", "reference_id": "1890782", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890782" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:53Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:53Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:53Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14891" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-thy1-9usv-qkhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158514?format=api", "vulnerability_id": "VCID-trs8-pcm4-pkh9", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2088.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25708", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25924", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25908", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2088" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922410", "reference_id": "1922410", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922410" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:16Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:16Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:16Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2088" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-trs8-pcm4-pkh9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152316?format=api", "vulnerability_id": "VCID-tscg-3tuv-bqd4", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14553.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14553.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14553", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58741", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58753", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58738", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00361", "scoring_system": "epss", "scoring_elements": "0.58626", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865950", "reference_id": "1865950", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865950" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/", "reference_id": "CAI7GRYZ5265JVKHC6VXI57MNJDDB63C", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CAI7GRYZ5265JVKHC6VXI57MNJDDB63C/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/", "reference_id": "HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYQPCHGCVKFS3H226QQKZFQP56JYOQ3T/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/", "reference_id": "SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:23Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SA2XMR2ZY2BPR3VLTDVLNV74JL7TA7KL/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14553" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tscg-3tuv-bqd4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152332?format=api", "vulnerability_id": "VCID-u3db-vty5-nyc3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14567.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14567.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14567", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62338", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62446", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62451", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00419", "scoring_system": "epss", "scoring_elements": "0.62439", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14567" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865952", "reference_id": "1865952", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865952" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14567" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u3db-vty5-nyc3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153934?format=api", "vulnerability_id": "VCID-u41n-pxb8-mqaw", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2579.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2579.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2579", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00605", "scoring_system": "epss", "scoring_elements": "0.70195", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00605", "scoring_system": "epss", "scoring_elements": "0.70207", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00605", "scoring_system": "epss", "scoring_elements": "0.70209", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00605", "scoring_system": "epss", "scoring_elements": "0.70105", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2579" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796881", "reference_id": "1796881", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796881" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:00Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:00Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:00Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:00Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2579" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u41n-pxb8-mqaw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152167?format=api", "vulnerability_id": "VCID-u4mz-ex3s-3fhb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14656.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14656.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14656", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.5919", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59306", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59314", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00369", "scoring_system": "epss", "scoring_elements": "0.59302", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14656" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865971", "reference_id": "1865971", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865971" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:24Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:24Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:24Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:24Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14656" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u4mz-ex3s-3fhb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154069?format=api", "vulnerability_id": "VCID-ucg8-3yjb-vbec", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2774.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2774.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2774", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.62163", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.62171", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.62061", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00414", "scoring_system": "epss", "scoring_elements": "0.62174", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2774" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830054", "reference_id": "1830054", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830054" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:39Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2774" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ucg8-3yjb-vbec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158665?format=api", "vulnerability_id": "VCID-ucmy-m6wv-pkfk", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Information Schema). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2032.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2032.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2032", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48506", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48649", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48662", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48643", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2032" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922394", "reference_id": "1922394", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922394" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:13Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2032" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ucmy-m6wv-pkfk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158325?format=api", "vulnerability_id": "VCID-ugnq-cttj-ykcw", "summary": "Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Client accessible data. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2007.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2007.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2007", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.5977", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59659", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59779", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00377", "scoring_system": "epss", "scoring_elements": "0.59768", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2007" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922382", "reference_id": "1922382", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922382" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:43Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:43Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/", "reference_id": "CS5THZSGI7O2CZO44NWYE57AG2T7NK3K", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CS5THZSGI7O2CZO44NWYE57AG2T7NK3K/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210622-0001/", "reference_id": "ntap-20210622-0001", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:43Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210622-0001/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3708", "reference_id": "RHSA-2019:3708", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3708" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1100", "reference_id": "RHSA-2020:1100", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1100" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5503", "reference_id": "RHSA-2020:5503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5655", "reference_id": "RHSA-2020:5655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5660", "reference_id": "RHSA-2020:5660", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5662", "reference_id": "RHSA-2020:5662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/", "reference_id": "T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC", "reference_type": "", "scores": [ { "value": "3.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:43Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7EAHJPWOOF4D6PEFLXW5IQWRRSZ3HRC/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2007" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ugnq-cttj-ykcw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152302?format=api", "vulnerability_id": "VCID-upfa-r369-d7d6", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14828.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14828.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14828", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76709", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76786", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76791", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00942", "scoring_system": "epss", "scoring_elements": "0.76777", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14828" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890760", "reference_id": "1890760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890760" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-26T19:54:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14828" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-upfa-r369-d7d6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7839?format=api", "vulnerability_id": "VCID-uttr-gxmg-syca", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14812.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14812.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0124", "scoring_system": "epss", "scoring_elements": "0.79657", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0124", "scoring_system": "epss", "scoring_elements": "0.79732", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0124", "scoring_system": "epss", "scoring_elements": "0.79739", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0124", "scoring_system": "epss", "scoring_elements": "0.79722", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14812" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890756", "reference_id": "1890756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890756" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/", "reference_id": "JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00027.html", "reference_id": "msg00027.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/01/msg00027.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/", "reference_id": "OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14812" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uttr-gxmg-syca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152169?format=api", "vulnerability_id": "VCID-uuna-r9qe-tyev", "summary": "Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Environment Mgmt Console). Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of PeopleSoft Enterprise PeopleTools accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14564", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.4314", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.4297", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43129", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.43148", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14564" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:13Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:59:13Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14564" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uuna-r9qe-tyev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154028?format=api", "vulnerability_id": "VCID-ux2g-3jc3-tudb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Memcached). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2804.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2804.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2804", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.72538", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.72543", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.72528", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00699", "scoring_system": "epss", "scoring_elements": "0.72451", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2804" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830058", "reference_id": "1830058", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830058" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2804" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ux2g-3jc3-tudb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152304?format=api", "vulnerability_id": "VCID-v5qc-ymug-yudd", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14844.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14844.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14844", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14844" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890767", "reference_id": "1890767", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890767" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:32Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:32Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:32Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14844" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v5qc-ymug-yudd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153931?format=api", "vulnerability_id": "VCID-vesf-jady-cya5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). The supported version that is affected is 8.0.19. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2898.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2898.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2898", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59561", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.5956", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59571", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00373", "scoring_system": "epss", "scoring_elements": "0.59451", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2898" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830069", "reference_id": "1830069", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830069" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:27Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2898" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vesf-jady-cya5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152387?format=api", "vulnerability_id": "VCID-vggx-2kfb-sqen", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14623.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14623.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14623", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62107", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62217", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.6222", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00415", "scoring_system": "epss", "scoring_elements": "0.62208", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14623" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865962", "reference_id": "1865962", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865962" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:05Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:05Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:05Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:58:05Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14623" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vggx-2kfb-sqen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153727?format=api", "vulnerability_id": "VCID-vpu1-97dy-8ucg", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2896.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2896.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2896", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65952", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65962", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65966", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00487", "scoring_system": "epss", "scoring_elements": "0.65856", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2896" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830067", "reference_id": "1830067", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830067" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:31Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2896" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpu1-97dy-8ucg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152213?format=api", "vulnerability_id": "VCID-wb94-6gfc-a7b3", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14775.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14775.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14775", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01408", "scoring_system": "epss", "scoring_elements": "0.80965", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01408", "scoring_system": "epss", "scoring_elements": "0.80903", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01408", "scoring_system": "epss", "scoring_elements": "0.80973", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.01408", "scoring_system": "epss", "scoring_elements": "0.80963", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14775" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890784", "reference_id": "1890784", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890784" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14775" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wb94-6gfc-a7b3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152336?format=api", "vulnerability_id": "VCID-wmym-qjbr-bqe7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14838.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14838.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14838", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48506", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48649", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48662", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0025", "scoring_system": "epss", "scoring_elements": "0.48643", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14838" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890765", "reference_id": "1890765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890765" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:38Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:38Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:38Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14838" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wmym-qjbr-bqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158458?format=api", "vulnerability_id": "VCID-wqyn-v49b-gud8", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2087.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2087.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2087", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25708", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25924", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25908", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2087" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922408", "reference_id": "1922408", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922408" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:17Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:17Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:17Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2087" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wqyn-v49b-gud8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152158?format=api", "vulnerability_id": "VCID-x68m-xw9e-nuh7", "summary": "Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: Analytics Web General). Supported versions that are affected are 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks of this vulnerability can result in takeover of Oracle Business Intelligence Enterprise Edition. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14626", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01991", "scoring_system": "epss", "scoring_elements": "0.84057", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.01991", "scoring_system": "epss", "scoring_elements": "0.83997", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.01991", "scoring_system": "epss", "scoring_elements": "0.84054", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.01991", "scoring_system": "epss", "scoring_elements": "0.84061", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14626" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:58Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:58Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14626" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x68m-xw9e-nuh7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152075?format=api", "vulnerability_id": "VCID-xahz-qgvr-m7gs", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14633.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14633.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14633", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.46077", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.46216", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.4623", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00231", "scoring_system": "epss", "scoring_elements": "0.46222", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14633" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865966", "reference_id": "1865966", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865966" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:54Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:54Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:54Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T17:57:54Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14633" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xahz-qgvr-m7gs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6991?format=api", "vulnerability_id": "VCID-xzsx-phnf-bufu", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2938.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-2938.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2938", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25126", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25139", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25122", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24922", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-2938" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680", "reference_id": "1764680", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764680" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4195-1/", "reference_id": "4195-1", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://usn.ubuntu.com/4195-1/" }, { "reference_url": "https://usn.ubuntu.com/4195-2/", "reference_id": "4195-2", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://usn.ubuntu.com/4195-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/", "reference_id": "6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6DTUCXX5XXPNPFV2PHP6IESGTCFMZOFP/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/", "reference_id": "7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7X5D3O4TOQ57KL5FLQEXH2JB2UQYHCUZ/" }, { "reference_url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "reference_id": "cpuoct2019-5072832.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html" }, { "reference_url": "https://security.gentoo.org/glsa/202405-25", "reference_id": "GLSA-202405-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-25" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/", "reference_id": "MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKCJLNRK6RHFAHV7ZFD3XO7HNSBU3XOL/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html", "reference_id": "msg00037.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00037.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20191017-0002/", "reference_id": "ntap-20191017-0002", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-01T16:14:59Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20191017-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2019-2938" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzsx-phnf-bufu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152403?format=api", "vulnerability_id": "VCID-xzzs-g9cs-qfgp", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14800.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14800.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00324", "scoring_system": "epss", "scoring_elements": "0.55859", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00324", "scoring_system": "epss", "scoring_elements": "0.55982", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00324", "scoring_system": "epss", "scoring_elements": "0.55995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00324", "scoring_system": "epss", "scoring_elements": "0.55979", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14800" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890753", "reference_id": "1890753", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890753" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:14Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:14Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:14Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14800" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzzs-g9cs-qfgp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152135?format=api", "vulnerability_id": "VCID-y3rn-48kf-abb2", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14893.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14893.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14893", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.52965", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53091", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.5311", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53094", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14893" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890783", "reference_id": "1890783", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890783" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14893" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y3rn-48kf-abb2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158545?format=api", "vulnerability_id": "VCID-ydqz-d33w-9ufe", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2036.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2036.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2036", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2036" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922395", "reference_id": "1922395", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922395" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:09Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2036" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ydqz-d33w-9ufe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158432?format=api", "vulnerability_id": "VCID-yhns-4tru-augx", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2065.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2065.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2065", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2065" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922404", "reference_id": "1922404", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922404" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:39Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795", "reference_id": "980795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980795" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:39Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:54:39Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2065" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yhns-4tru-augx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152122?format=api", "vulnerability_id": "VCID-ynmn-z16f-v3fd", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14888.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14888.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14888", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14888" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890781", "reference_id": "1890781", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890781" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:56Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:56Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:42:56Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14888" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ynmn-z16f-v3fd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7829?format=api", "vulnerability_id": "VCID-yqa8-s6py-5kdr", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14776.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14776.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14776", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70297", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70399", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70401", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00612", "scoring_system": "epss", "scoring_elements": "0.70387", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14776" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14776", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14776" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890743", "reference_id": "1890743", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890743" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/", "reference_id": "JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JBZZ3XIRPFPAWBZLYBN777ANXSFXAPPB/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/", "reference_id": "OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OPW5YMZR5C7D7NBZQSTDOB3XAI5QP32Y/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/", "reference_id": "X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X4X2BMF3EILMTXGOZDTPYS3KT5VWLA2P/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:48Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14776" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqa8-s6py-5kdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/8270?format=api", "vulnerability_id": "VCID-yrjr-4mh7-3ub3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2574.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2574.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2574", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.3651", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36315", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36495", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00157", "scoring_system": "epss", "scoring_elements": "0.36521", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2574" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/09/29/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2020/09/29/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798587", "reference_id": "1798587", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798587" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4250-1/", "reference_id": "4250-1", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "https://usn.ubuntu.com/4250-1/" }, { "reference_url": "https://usn.ubuntu.com/4250-2/", "reference_id": "4250-2", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "https://usn.ubuntu.com/4250-2/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "cpujan2020.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00007.html", "reference_id": "msg00007.html", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00007.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200122-0002/", "reference_id": "ntap-20200122-0002", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:05:04Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200122-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4026", "reference_id": "RHSA-2020:4026", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4026" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4174", "reference_id": "RHSA-2020:4174", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4174" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5246", "reference_id": "RHSA-2020:5246", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5246" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5500", "reference_id": "RHSA-2020:5500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5503", "reference_id": "RHSA-2020:5503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5654", "reference_id": "RHSA-2020:5654", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5654" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5655", "reference_id": "RHSA-2020:5655", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5655" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5660", "reference_id": "RHSA-2020:5660", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5662", "reference_id": "RHSA-2020:5662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5663", "reference_id": "RHSA-2020:5663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5665", "reference_id": "RHSA-2020:5665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5665" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2574" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yrjr-4mh7-3ub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/154008?format=api", "vulnerability_id": "VCID-yv9e-hw5v-aqav", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2925.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2925.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2925", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2925" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830076", "reference_id": "1830076", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830076" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:03Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2925" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yv9e-hw5v-aqav" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152355?format=api", "vulnerability_id": "VCID-yvw3-zw6y-a7hs", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14836.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14836.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14836", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.70969", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71069", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71072", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00637", "scoring_system": "epss", "scoring_elements": "0.71059", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14836" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890763", "reference_id": "1890763", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890763" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:40Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:40Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:43:40Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14836" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yvw3-zw6y-a7hs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/9046?format=api", "vulnerability_id": "VCID-yx5q-gpgz-67ar", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03255", "scoring_system": "epss", "scoring_elements": "0.87424", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.03255", "scoring_system": "epss", "scoring_elements": "0.8747", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.03255", "scoring_system": "epss", "scoring_elements": "0.87473", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.03255", "scoring_system": "epss", "scoring_elements": "0.87468", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951762", "reference_id": "1951762", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951762" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://security.gentoo.org/glsa/202105-28", "reference_id": "202105-28", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://security.gentoo.org/glsa/202105-28" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987325", "reference_id": "987325", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987325" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ/", "reference_id": "AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AKV7TRUEQW6EV45RSZVVFLVQMNHVHBCJ/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2021.html", "reference_id": "cpuapr2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2021.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7/", "reference_id": "JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JJQRPXNDH6YHQLUSCS5VA7DAW32PN7N7/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210513-0002/", "reference_id": "ntap-20210513-0002", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210513-0002/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ/", "reference_id": "UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T14:43:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UJVUTKKFQAWR7NURCQHQQ5JHTVYGEOYQ/" }, { "reference_url": "https://usn.ubuntu.com/4952-1/", "reference_id": "USN-4952-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4952-1/" }, { "reference_url": "https://usn.ubuntu.com/5022-3/", "reference_id": "USN-5022-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5022-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2180" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yx5q-gpgz-67ar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152131?format=api", "vulnerability_id": "VCID-z2nc-b5e2-bbc5", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14678.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14678.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14678", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74314", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74397", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.744", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00789", "scoring_system": "epss", "scoring_elements": "0.74387", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14678" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865973", "reference_id": "1865973", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1865973" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:44Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4441-1/", "reference_id": "4441-1", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:44Z/" } ], "url": "https://usn.ubuntu.com/4441-1/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujul2020.html", "reference_id": "cpujul2020.html", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:44Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujul2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200717-0004/", "reference_id": "ntap-20200717-0004", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-09-27T17:54:44Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200717-0004/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14678" ], "risk_score": 3.2, "exploitability": "0.5", "weighted_severity": "6.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2nc-b5e2-bbc5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152116?format=api", "vulnerability_id": "VCID-z9nb-6sff-zydc", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14777.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14777.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14777", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890744", "reference_id": "1890744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890744" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:47Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14777" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z9nb-6sff-zydc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/158597?format=api", "vulnerability_id": "VCID-zd79-a4ky-e7e7", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PAM Auth Plugin). Supported versions that are affected are 5.7.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2014.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-2014.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2014", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42213", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42389", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.424", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00201", "scoring_system": "epss", "scoring_elements": "0.42378", "published_at": "2026-06-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-2014" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922385", "reference_id": "1922385", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922385" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:35Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2021.html", "reference_id": "cpujan2021.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:35Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2021.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20210219-0003/", "reference_id": "ntap-20210219-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T17:55:35Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20210219-0003/" }, { "reference_url": "https://usn.ubuntu.com/4716-1/", "reference_id": "USN-4716-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4716-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2021-2014" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zd79-a4ky-e7e7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153759?format=api", "vulnerability_id": "VCID-zjb2-p2fw-qfcu", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2924.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2924.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2924", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53894", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53897", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53911", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.003", "scoring_system": "epss", "scoring_elements": "0.53768", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2924" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830075", "reference_id": "1830075", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830075" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://usn.ubuntu.com/4350-1/", "reference_id": "4350-1", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://usn.ubuntu.com/4350-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-27T18:01:05Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2924" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjb2-p2fw-qfcu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/153942?format=api", "vulnerability_id": "VCID-zpxd-dtky-2yfb", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.18 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2761.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-2761.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2761", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71816", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.71826", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7173", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00667", "scoring_system": "epss", "scoring_elements": "0.7183", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-2761" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830049", "reference_id": "1830049", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1830049" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/", "reference_id": "77REFDB7DE4WNKQIRGZTF53RFBQOXQLC", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/77REFDB7DE4WNKQIRGZTF53RFBQOXQLC/" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "reference_id": "cpuapr2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20200416-0003/", "reference_id": "ntap-20200416-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20200416-0003/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3518", "reference_id": "RHSA-2020:3518", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3732", "reference_id": "RHSA-2020:3732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3755", "reference_id": "RHSA-2020:3755", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3757", "reference_id": "RHSA-2020:3757", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/", "reference_id": "SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDGBQYS3A36S4CAZPV5YROHYXYZR6LAH/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/", "reference_id": "TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T14:59:58Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TSVLI36TYRTPQGCS24VZQUXCUFOUW4VQ/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-2761" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zpxd-dtky-2yfb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/152077?format=api", "vulnerability_id": "VCID-zubj-a5g9-2yen", "summary": "Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14785.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14785.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14785", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74992", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74995", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74982", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00825", "scoring_system": "epss", "scoring_elements": "0.74911", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14785" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890745", "reference_id": "1890745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890745" }, { "reference_url": "https://security.gentoo.org/glsa/202105-27", "reference_id": "202105-27", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://security.gentoo.org/glsa/202105-27" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623", "reference_id": "972623", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972623" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuoct2020.html", "reference_id": "cpuoct2020.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuoct2020.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/", "reference_id": "GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GZU3PA5XJXNQ4C4F6435ARM6WKM3OZYR/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20201023-0003/", "reference_id": "ntap-20201023-0003", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20201023-0003/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/", "reference_id": "O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7RVY2Z7HYQHFJXBGARXUAGKUDAWYPP4/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3590", "reference_id": "RHSA-2021:3590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3811", "reference_id": "RHSA-2021:3811", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3811" }, { "reference_url": "https://usn.ubuntu.com/4604-1/", "reference_id": "USN-4604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4604-1/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/", "reference_id": "ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:44:37Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVS6KNVBZCLZBKNJ5JA2PGAG3NTOJVH6/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/6534?format=api", "purl": "pkg:ebuild/dev-db/mysql@5.7.34", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }, { "url": "http://public2.vulnerablecode.io/api/packages/6535?format=api", "purl": "pkg:ebuild/dev-db/mysql@8.0.24", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@8.0.24" } ], "aliases": [ "CVE-2020-14785" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zubj-a5g9-2yen" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/mysql@5.7.34" }