{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/94248?format=json","vulnerability_id":"VCID-nhp3-qjyz-rkg2","summary":"Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).  Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 2.7 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).","aliases":[{"alias":"CVE-2023-22038"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/117341?format=json","purl":"pkg:deb/debian/mysql-8.0@8.0.34-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.34-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/117263?format=json","purl":"pkg:deb/debian/mysql-8.0@8.0.46-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mysql-8.0@8.0.46-1%3Fdistro=sid"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/109508?format=json","purl":"pkg:rpm/redhat/mysql@8.0.36-1?arch=el9_3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-177g-fh9z-33gj"},{"vulnerability":"VCID-1g8b-eyq6-afem"},{"vulnerability":"VCID-1jfa-mhvy-93ct"},{"vulnerability":"VCID-1u1b-8v5s-1fdw"},{"vulnerability":"VCID-236w-sgrr-b7h2"},{"vulnerability":"VCID-2bu2-yfj6-1udu"},{"vulnerability":"VCID-2g5a-2p5v-4qch"},{"vulnerability":"VCID-2rvr-kwm3-kqdz"},{"vulnerability":"VCID-2u66-mt59-pkfg"},{"vulnerability":"VCID-3tah-r1fh-bkgd"},{"vulnerability":"VCID-474k-ey2n-m3br"},{"vulnerability":"VCID-4a6w-4b9k-f7f8"},{"vulnerability":"VCID-4jrx-vqw9-cbcj"},{"vulnerability":"VCID-4uzc-ydu7-9yhp"},{"vulnerability":"VCID-5eyp-3wuq-v3es"},{"vulnerability":"VCID-5qty-zn57-w7gf"},{"vulnerability":"VCID-5uu1-k72t-3ka2"},{"vulnerability":"VCID-5vh5-rc2d-ubap"},{"vulnerability":"VCID-5xp8-65yk-53bu"},{"vulnerability":"VCID-6zwx-u1kp-wfft"},{"vulnerability":"VCID-8kkg-d417-v7he"},{"vulnerability":"VCID-9akz-xpst-3yd2"},{"vulnerability":"VCID-9b16-v8cn-nbad"},{"vulnerability":"VCID-9cj3-np5u-tugn"},{"vulnerability":"VCID-9huv-c1e5-h3ar"},{"vulnerability":"VCID-9t7f-dpsz-hycf"},{"vulnerability":"VCID-9taw-k2q8-xqht"},{"vulnerability":"VCID-9umw-fxj9-jbbx"},{"vulnerability":"VCID-9wp3-dz62-dbc4"},{"vulnerability":"VCID-acer-jpka-23gz"},{"vulnerability":"VCID-amnr-85nr-pyc1"},{"vulnerability":"VCID-ay1v-jyyp-j3dq"},{"vulnerability":"VCID-b8v9-5ac6-u3d5"},{"vulnerability":"VCID-bu2x-ksht-xqan"},{"vulnerability":"VCID-cpju-mkxd-jbab"},{"vulnerability":"VCID-cw7s-73a4-mqaj"},{"vulnerability":"VCID-cw89-1t2w-pqgu"},{"vulnerability":"VCID-cxjh-1vpp-kuh6"},{"vulnerability":"VCID-d4pq-hfwr-4bew"},{"vulnerability":"VCID-dqyh-5dmj-t7gm"},{"vulnerability":"VCID-eykf-hbs4-ufhd"},{"vulnerability":"VCID-f7vv-meny-bber"},{"vulnerability":"VCID-ff91-b3mb-jyfc"},{"vulnerability":"VCID-fg88-m3x6-t3ax"},{"vulnerability":"VCID-fkj2-esm6-yygv"},{"vulnerability":"VCID-ghnf-3z7s-4baj"},{"vulnerability":"VCID-gupv-uku4-y3g8"},{"vulnerability":"VCID-h3sx-prwr-47fj"},{"vulnerability":"VCID-hq4e-ewu8-muga"},{"vulnerability":"VCID-hth1-jgmt-87am"},{"vulnerability":"VCID-hw9p-n2v7-wucq"},{"vulnerability":"VCID-jkyd-2xsu-7udx"},{"vulnerability":"VCID-kesv-dp5q-q3hm"},{"vulnerability":"VCID-myj4-e8f2-v7ah"},{"vulnerability":"VCID-n51c-dnka-tkck"},{"vulnerability":"VCID-n6zu-gn5j-c3hk"},{"vulnerability":"VCID-nhp3-qjyz-rkg2"},{"vulnerability":"VCID-nt37-1y76-hbcu"},{"vulnerability":"VCID-nxp6-fpk6-z7b4"},{"vulnerability":"VCID-p553-ngn1-mqbd"},{"vulnerability":"VCID-par7-xzqs-5fff"},{"vulnerability":"VCID-q4cu-hm3s-8kfy"},{"vulnerability":"VCID-q4sq-nssh-3ue1"},{"vulnerability":"VCID-qdhy-ehzf-f7hw"},{"vulnerability":"VCID-qe4n-97jc-rfeu"},{"vulnerability":"VCID-qphb-6ggq-2ycg"},{"vulnerability":"VCID-qwaf-r2f7-3fhx"},{"vulnerability":"VCID-sbfy-fwwj-kyfb"},{"vulnerability":"VCID-trdx-4eb6-7qad"},{"vulnerability":"VCID-tvcd-wcmc-6uez"},{"vulnerability":"VCID-tyf4-qsz7-z7cx"},{"vulnerability":"VCID-upz3-nnmk-dqb6"},{"vulnerability":"VCID-vbwg-qemq-yyan"},{"vulnerability":"VCID-vu97-ubph-2kh6"},{"vulnerability":"VCID-w7ne-yphf-xfga"},{"vulnerability":"VCID-wdex-fxmj-fqa7"},{"vulnerability":"VCID-wkav-ksx3-sugc"},{"vulnerability":"VCID-wuf6-2hgt-k3hp"},{"vulnerability":"VCID-x2dm-9cu8-cfa4"},{"vulnerability":"VCID-x9ub-8wpc-5uft"},{"vulnerability":"VCID-xrj2-et7d-t3ag"},{"vulnerability":"VCID-yqjx-grfz-jbdv"},{"vulnerability":"VCID-ysau-6pks-cya1"},{"vulnerability":"VCID-z8dk-5248-5qh7"},{"vulnerability":"VCID-z923-cdaa-67cc"},{"vulnerability":"VCID-zt2n-bsgm-r3e2"},{"vulnerability":"VCID-zw7w-rjev-p7fs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/mysql@8.0.36-1%3Farch=el9_3"},{"url":"http://public2.vulnerablecode.io/api/packages/112152?format=json","purl":"pkg:rpm/redhat/rh-mysql80-mysql@8.0.36-1?arch=el7","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-177g-fh9z-33gj"},{"vulnerability":"VCID-1g8b-eyq6-afem"},{"vulnerability":"VCID-1jfa-mhvy-93ct"},{"vulnerability":"VCID-1u1b-8v5s-1fdw"},{"vulnerability":"VCID-236w-sgrr-b7h2"},{"vulnerability":"VCID-2bu2-yfj6-1udu"},{"vulnerability":"VCID-2g5a-2p5v-4qch"},{"vulnerability":"VCID-2nq8-bqg7-fug2"},{"vulnerability":"VCID-2rvr-kwm3-kqdz"},{"vulnerability":"VCID-2u66-mt59-pkfg"},{"vulnerability":"VCID-3tah-r1fh-bkgd"},{"vulnerability":"VCID-474k-ey2n-m3br"},{"vulnerability":"VCID-4a6w-4b9k-f7f8"},{"vulnerability":"VCID-4jrx-vqw9-cbcj"},{"vulnerability":"VCID-4uzc-ydu7-9yhp"},{"vulnerability":"VCID-5eyp-3wuq-v3es"},{"vulnerability":"VCID-5qty-zn57-w7gf"},{"vulnerability":"VCID-5uu1-k72t-3ka2"},{"vulnerability":"VCID-5vh5-rc2d-ubap"},{"vulnerability":"VCID-5xp8-65yk-53bu"},{"vulnerability":"VCID-6zwx-u1kp-wfft"},{"vulnerability":"VCID-8kkg-d417-v7he"},{"vulnerability":"VCID-9akz-xpst-3yd2"},{"vulnerability":"VCID-9b16-v8cn-nbad"},{"vulnerability":"VCID-9cj3-np5u-tugn"},{"vulnerability":"VCID-9t7f-dpsz-hycf"},{"vulnerability":"VCID-9taw-k2q8-xqht"},{"vulnerability":"VCID-9umw-fxj9-jbbx"},{"vulnerability":"VCID-9wp3-dz62-dbc4"},{"vulnerability":"VCID-acer-jpka-23gz"},{"vulnerability":"VCID-amnr-85nr-pyc1"},{"vulnerability":"VCID-ay1v-jyyp-j3dq"},{"vulnerability":"VCID-b8v9-5ac6-u3d5"},{"vulnerability":"VCID-bu2x-ksht-xqan"},{"vulnerability":"VCID-cpju-mkxd-jbab"},{"vulnerability":"VCID-cw7s-73a4-mqaj"},{"vulnerability":"VCID-cw89-1t2w-pqgu"},{"vulnerability":"VCID-cxjh-1vpp-kuh6"},{"vulnerability":"VCID-d4pq-hfwr-4bew"},{"vulnerability":"VCID-dqyh-5dmj-t7gm"},{"vulnerability":"VCID-eykf-hbs4-ufhd"},{"vulnerability":"VCID-f7vv-meny-bber"},{"vulnerability":"VCID-ff91-b3mb-jyfc"},{"vulnerability":"VCID-fg88-m3x6-t3ax"},{"vulnerability":"VCID-fkj2-esm6-yygv"},{"vulnerability":"VCID-ghnf-3z7s-4baj"},{"vulnerability":"VCID-gupv-uku4-y3g8"},{"vulnerability":"VCID-h3sx-prwr-47fj"},{"vulnerability":"VCID-hq4e-ewu8-muga"},{"vulnerability":"VCID-hth1-jgmt-87am"},{"vulnerability":"VCID-hw9p-n2v7-wucq"},{"vulnerability":"VCID-kesv-dp5q-q3hm"},{"vulnerability":"VCID-myj4-e8f2-v7ah"},{"vulnerability":"VCID-n51c-dnka-tkck"},{"vulnerability":"VCID-n6zu-gn5j-c3hk"},{"vulnerability":"VCID-nhp3-qjyz-rkg2"},{"vulnerability":"VCID-nt37-1y76-hbcu"},{"vulnerability":"VCID-nxp6-fpk6-z7b4"},{"vulnerability":"VCID-p553-ngn1-mqbd"},{"vulnerability":"VCID-par7-xzqs-5fff"},{"vulnerability":"VCID-q4cu-hm3s-8kfy"},{"vulnerability":"VCID-q4sq-nssh-3ue1"},{"vulnerability":"VCID-qdhy-ehzf-f7hw"},{"vulnerability":"VCID-qe4n-97jc-rfeu"},{"vulnerability":"VCID-qphb-6ggq-2ycg"},{"vulnerability":"VCID-qwaf-r2f7-3fhx"},{"vulnerability":"VCID-sbfy-fwwj-kyfb"},{"vulnerability":"VCID-trdx-4eb6-7qad"},{"vulnerability":"VCID-tvcd-wcmc-6uez"},{"vulnerability":"VCID-tyf4-qsz7-z7cx"},{"vulnerability":"VCID-upz3-nnmk-dqb6"},{"vulnerability":"VCID-vbwg-qemq-yyan"},{"vulnerability":"VCID-vu97-ubph-2kh6"},{"vulnerability":"VCID-w7ne-yphf-xfga"},{"vulnerability":"VCID-wdex-fxmj-fqa7"},{"vulnerability":"VCID-wkav-ksx3-sugc"},{"vulnerability":"VCID-wuf6-2hgt-k3hp"},{"vulnerability":"VCID-x2dm-9cu8-cfa4"},{"vulnerability":"VCID-x9ub-8wpc-5uft"},{"vulnerability":"VCID-xrj2-et7d-t3ag"},{"vulnerability":"VCID-yqjx-grfz-jbdv"},{"vulnerability":"VCID-ysau-6pks-cya1"},{"vulnerability":"VCID-z8dk-5248-5qh7"},{"vulnerability":"VCID-z923-cdaa-67cc"},{"vulnerability":"VCID-zt2n-bsgm-r3e2"},{"vulnerability":"VCID-zw7w-rjev-p7fs"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-mysql80-mysql@8.0.36-1%3Farch=el7"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22038.json","reference_id":"","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22038.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-22038","reference_id":"","reference_type":"","scores":[{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12017","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11998","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12101","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12099","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.12062","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00039","scoring_system":"epss","scoring_elements":"0.11987","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-22038"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041819","reference_id":"1041819","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041819"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2224215","reference_id":"2224215","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2224215"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C63HAGVLQA6FJNDCHR7CNZZL6VSLILB2/","reference_id":"C63HAGVLQA6FJNDCHR7CNZZL6VSLILB2","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T16:29:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C63HAGVLQA6FJNDCHR7CNZZL6VSLILB2/"},{"reference_url":"https://www.oracle.com/security-alerts/cpujul2023.html","reference_id":"cpujul2023.html","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T16:29:21Z/"}],"url":"https://www.oracle.com/security-alerts/cpujul2023.html"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JEHRBBYYTPA4DETOM5XAKGCP37NUTLOA/","reference_id":"JEHRBBYYTPA4DETOM5XAKGCP37NUTLOA","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T16:29:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JEHRBBYYTPA4DETOM5XAKGCP37NUTLOA/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QYLDK6ODVC4LJSDULLX6Q2YHTFOWABCN/","reference_id":"QYLDK6ODVC4LJSDULLX6Q2YHTFOWABCN","reference_type":"","scores":[{"value":"2.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T16:29:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QYLDK6ODVC4LJSDULLX6Q2YHTFOWABCN/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0894","reference_id":"RHSA-2024:0894","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0894"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1141","reference_id":"RHSA-2024:1141","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:1141"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2619","reference_id":"RHSA-2024:2619","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2619"},{"reference_url":"https://usn.ubuntu.com/6288-1/","reference_id":"USN-6288-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6288-1/"}],"weaknesses":[],"exploits":[],"severity_range_score":"2.7 - 2.7","exploitability":"0.5","weighted_severity":"2.4","risk_score":1.2,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nhp3-qjyz-rkg2"}