CVE-2022-21301 in MySQL Server
Summary
by MITRE • 01/19/2022
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 05/17/2025
The vulnerability identified as CVE-2022-21301 represents a critical security flaw within Oracle MySQL Server's DML (Data Manipulation Language) component affecting versions 8.0.27 and earlier. This vulnerability operates at the core of database operations and specifically targets the server's ability to process data manipulation commands, making it particularly dangerous for systems that rely heavily on database integrity and availability. The flaw resides in the server's handling of certain DML operations, creating a pathway for malicious actors to exploit the system's fundamental data processing mechanisms.
The technical nature of this vulnerability stems from insufficient input validation and error handling within the MySQL Server's DML processing module. Attackers with high privileges and network access can leverage this weakness to execute malicious DML commands that trigger system instability. The vulnerability's classification as easily exploitable indicates that the attack vector requires minimal sophistication, making it particularly concerning for production environments where database servers are constantly under threat. The flaw manifests when specific combinations of data manipulation operations are processed, leading to unpredictable behavior in the server's execution environment.
From an operational impact perspective, this vulnerability creates multiple attack surfaces that can severely compromise database security and availability. Successful exploitation can result in complete denial of service conditions where the MySQL Server becomes unresponsive or crashes repeatedly, effectively rendering database services unavailable to legitimate users and applications. Additionally, the vulnerability enables unauthorized modification of database content through unauthorized update, insert, or delete operations against specific database segments. This dual impact on both availability and data integrity makes the vulnerability particularly dangerous for mission-critical applications where database consistency and uptime are paramount. The CVSS score of 5.5 reflects the balance between the vulnerability's accessibility and the potential damage it can cause, with integrity and availability being the primary impacted domains.
Organizations affected by this vulnerability should implement immediate mitigations including applying the latest security patches from Oracle, which address the underlying input validation issues within the DML processing component. Network segmentation and access controls should be strengthened to limit privileged access to database servers, reducing the attack surface for potential exploitation. Monitoring systems should be enhanced to detect unusual patterns in database operations that might indicate exploitation attempts. The vulnerability aligns with CWE-121, which describes buffer overflow conditions, and relates to ATT&CK technique T1499.004 for network denial of service attacks, highlighting the comprehensive nature of the threat. Regular security assessments should be conducted to identify any potential indirect impacts on database applications that might be vulnerable due to their reliance on the affected MySQL Server versions.