Lucene search
AnonymousZDI-22-707HistoryApr 28, 2022 - 12:00 a.m.
Oracle MySQL Cluster Data Node Integer Overflow Remote Code Execution Vulnerability
2022-04-2800:00:00
Anonymous
www.zerodayinitiative.com
31
oracle mysql
cluster data node
integer overflow
remote code execution
vulnerability
authentication
data validation
memory writing
service account
EPSS
0.018
Percentile
88.3%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Oracle MySQL Cluster. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of Data Node jobs. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the service account.
Related
ubuntucve
ubuntucve
CVE-2022-21482
2022-04-19 00:00:00
cvelist
cvelist
CVE-2022-21482
2022-04-19 20:38:30
osv
osv
CGA-hpg3-r5w5-3mjw
2024-07-04 22:10:34
CVE-2022-21482
2022-04-19 21:15:17
nessus
nessus
CBL Mariner 2.0 Security Update: mysql (CVE-2022-21482)
2023-03-28 00:00:00
Photon OS 4.0: Mysql PHSA-2022-4.0-0187
2024-07-23 00:00:00
Photon OS 3.0: Mysql PHSA-2022-3.0-0415
2024-07-24 00:00:00
vulnrichment
vulnrichment
CVE-2022-21482
2022-04-19 20:38:30
cve
cve
CVE-2022-21482
2022-04-19 21:15:17
prion
prion
Design/Logic Flaw
2022-04-19 21:15:00
cbl_mariner
cbl_mariner
CVE-2022-21482 affecting package mysql for versions less than 8.0.29-1
2022-07-01 21:02:51
nvd
nvd
CVE-2022-21482
2022-04-19 21:15:17
f5
f5
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0187
2022-05-20 00:00:00
Moderate Photon OS Security Update - PHSA-2022-4.0-0187
2022-05-20 00:00:00
Important Photon OS Security Update - PHSA-2022-0415
2022-07-07 00:00:00
ibm
ibm
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2022-04-16 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00