Oracle MySQL Cluster 8.x < 8.3.0 (January and April 2024 CPU)

high Nessus Plugin ID 189355

Language:

Version 1.4 Apr 20, 2024, 5:07 PM CISA reference CVSS metrics ("CVSSv2 score" set to 7.8) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") CVSSv2 severity (based on CVE-2023-44487, severity increased from "Medium" to "High") Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202404201707
Version 1.3 Apr 19, 2024, 9:35 PM CEA reference Plugin Feed: 202404192135
Version 1.2 Apr 19, 2024, 11:43 AM IAVM reference Plugin Feed: 202404191143
Version 1.2 Apr 19, 2024, 4:41 PM CVE (set "CVE" coverage to "CVE-2024-20965,CVE-2023-44487") CVSS metrics ("CVSSv2 score" set to 5.0) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P") CVSS metrics ("CVSSv3 score" set to 7.5) CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H") CVSS temporal metrics ("CVSSv2 temporal score" set to none) CVSS temporal metrics ("CVSSv2 temporal vector" set to none) CVSS temporal metrics ("CVSSv3 temporal score" set to none) CVSS temporal metrics ("CVSSv3 temporal vector" set to none) CVSSv2 score source (changed from "CVE-2024-20965" to "CVE-2023-44487") IAVM reference Plugin metadata Plugin Feed: 202404191641
Version 1.1 Jan 23, 2024, 3:21 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") Exploit attributes ("Exploit available" set to "False". "Exploitability ease" set to "No known exploits are available") Plugin Feed: 202401231521
Version 1.0 Jan 23, 2024, 9:30 AM New Plugin Feed: 202401230930

* Changelogs are generally available for changes made after Nov 1, 2022