CVE-2022-21589 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-21589 Interim 1 1 2026-03-05T04:49:15Z current 2026-03-05T04:49:15Z 2026-03-05T04:49:15Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-21589 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 5.7.39 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 8 mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9 mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de mysql-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-common-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-devel-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-errmsg-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-libs-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-server-8.0.17-3.module+el8.0.0+3898+e09bb8de mysql-test-8.0.17-3.module+el8.0.0+3898+e09bb8de mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9 as a component of SUSE Liberty Linux 8 mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-common-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-devel-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-errmsg-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-libs-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-server-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 mysql-test-8.0.17-3.module+el8.0.0+3898+e09bb8de as a component of SUSE Liberty Linux 8 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 5.7.39 and prior and 8.0.16 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). CVE-2022-21589 SUSE Liberty Linux 8:mecab-0.996-1.module+el8.0.0+3898+e09bb8de.9 SUSE Liberty Linux 8:mecab-ipadic-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mecab-ipadic-EUCJP-2.7.0.20070801-16.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-common-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-devel-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-errmsg-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-libs-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-server-8.0.17-3.module+el8.0.0+3898+e09bb8de SUSE Liberty Linux 8:mysql-test-8.0.17-3.module+el8.0.0+3898+e09bb8de moderate 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N