CVE-2019-2420 vulnerability in NetApp and Other Products
Published on January 16, 2019

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-2420

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-2420 are published in these products:

NetApp Oncommand Unified Manager

NetApp Oncommand Workflow Automation

NetApp Snapcenter

NetApp Storage Automation Store

Oracle MySQL

Canonical Ubuntu Linux

Red Hat Software Collections

Red Hat Enterprise Linux (RHEL)

Red Hat Enterprise Linux Eus

Red Hat Enterprise Linux Server Tus

Red Hat Enterprise Linux Server Aus

Affected Versions

Oracle Corporation MySQL Server:

Version 5.7.24 and prior is affected.
Version 8.0.13 and prior is affected.

Exploit Probability

EPSS

0.41%

Percentile

61.04%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-2420 vulnerability in NetApp and Other ProductsPublished on January 16, 2019

Products Associated with CVE-2019-2420

Affected Versions

Exploit Probability

CVE-2019-2420 vulnerability in NetApp and Other Products
Published on January 16, 2019