| Vulnerability Details : CVE-2021-2022
MySQL Server, versions 5.6.50 and prior, 5.7.32 and prior, 8.0.22 and prior…… 我现在5.7的已经更新到5.7.37了,但5.6的还是5.6.50的,这个版本不是影响到了么? |
| Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). |
处理个鸡儿,内网环境,物理隔离有本事你过来啊你![[经验] MySQL的漏洞你们怎么处理的?](https://bbs.toot.su/static/image/smiley/default/lol.gif){kind=small} |
5.6.50版本,意思是不重要?不用管? |
|
| 关闭远程访问 |
当然是防火墙限制ip只允许应用访问![[经验] MySQL的漏洞你们怎么处理的?](https://cdn.jsdelivr.net/gh/master-of-forums/master-of-forums/public/images/patch.gif){kind=small} |
需要吧,具体的看https://www.oracle.com/security-alerts/cpujan2021.html |
3Q,感谢! |