Uncaught Exception

CVE-2020-14852

Medium

4.9/10

Summary

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets). An easily exploitable vulnerability allows a highly privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DoS) of MySQL Server. This vulnerability affects mysql-server package versions through 8.0.21.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: HIGH
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-248 - Uncaught Exception

An exception is thrown from a function, but it is not caught.

References

Advisory
Issue
Advisory

Advisory Timeline

Published Oct 21, 2020

Uncaught Exception

CVE-2020-14852

Summary

CWE-248 - Uncaught Exception

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS