VulnerableCode Package Details - pkg:maven/mysql/mysql-connector-java@8.0.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-3819-zspc-aaaq Aliases: CVE-2020-2934	Channel Accessible by Non-Endpoint Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data and unauthorized ability to cause a partial denial of service (partial DoS) of MySQL Connectors.	8.0.20 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-s87v-mqer-aaag Aliases: CVE-2021-2471 GHSA-w6f2-8wx4-47r5	Uncontrolled Resource Consumption Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Connectors accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DoS) of MySQL Connectors.	8.0.27 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-z2s6-pcsm-aaag Aliases: CVE-2020-2875	Channel Accessible by Non-Endpoint Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Connectors, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data.	8.0.15 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-3819-zspc-aaaq
Aliases:
CVE-2020-2934

Channel Accessible by Non-Endpoint Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data and unauthorized ability to cause a partial denial of service (partial DoS) of MySQL Connectors.

8.0.20
Affected by 3 other vulnerabilities.

VCID-s87v-mqer-aaag
Aliases:
CVE-2021-2471
GHSA-w6f2-8wx4-47r5

Uncontrolled Resource Consumption Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Connectors accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DoS) of MySQL Connectors.

8.0.27
Affected by 2 other vulnerabilities.

VCID-z2s6-pcsm-aaag
Aliases:
CVE-2020-2875

Channel Accessible by Non-Endpoint Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in MySQL Connectors, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data as well as unauthorized read access to a subset of MySQL Connectors accessible data.

8.0.15
Affected by 5 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-01-17T02:37:42.980623+00:00	GHSA Importer	Affected by	VCID-s87v-mqer-aaag	None	35.1.0
2024-09-17T22:39:41.428358+00:00	GitLab Importer	Affected by	VCID-3819-zspc-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2020-2934.yml	34.0.1
2024-09-17T22:39:41.390051+00:00	GitLab Importer	Affected by	VCID-s87v-mqer-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2021-2471.yml	34.0.1
2024-09-17T22:39:41.228311+00:00	GitLab Importer	Affected by	VCID-z2s6-pcsm-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2020-2875.yml	34.0.1
2024-09-17T22:04:38.142194+00:00	GHSA Importer	Affected by	VCID-s87v-mqer-aaag	https://github.com/advisories/GHSA-w6f2-8wx4-47r5	34.0.1
2024-01-03T18:02:14.660612+00:00	GitLab Importer	Affected by	VCID-3819-zspc-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2020-2934.yml	34.0.0rc1
2024-01-03T18:02:14.625319+00:00	GitLab Importer	Affected by	VCID-s87v-mqer-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2021-2471.yml	34.0.0rc1
2024-01-03T18:02:14.473829+00:00	GitLab Importer	Affected by	VCID-z2s6-pcsm-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/mysql/mysql-connector-java/CVE-2020-2875.yml	34.0.0rc1
2024-01-03T17:39:28.135420+00:00	GHSA Importer	Affected by	VCID-s87v-mqer-aaag	https://github.com/advisories/GHSA-w6f2-8wx4-47r5	34.0.0rc1