CVE-2023-21947 in MySQL Serverinfo

Summary

by MITRE • 04/18/2023

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Analysis

by VulDB Data Team • 05/08/2025

The vulnerability identified as CVE-2023-21947 represents a significant availability threat within Oracle MySQL Server versions 8.0.32 and earlier. This weakness resides in the Server: Components Services component, which forms a critical part of the database server's operational framework. The vulnerability's classification as difficult to exploit indicates that while it requires specific conditions to be successfully leveraged, the potential impact on system availability makes it a serious concern for database administrators and security professionals. The CVSS 3.1 scoring system assigns it a base score of 4.4, reflecting the moderate severity of the availability impact with a vector of AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H. This scoring indicates that network-based attacks require high privileges and are not easily executed, yet can cause complete denial of service conditions.

The technical flaw manifests as an instability issue that can lead to complete system crashes or frequent repeatable hangs within the MySQL Server environment. Attackers with high privileged access and network connectivity through multiple protocols can exploit this vulnerability to force the database server into a state where it becomes completely unresponsive. This type of vulnerability directly impacts the availability aspect of the CIA triad, potentially disrupting business operations and data access for legitimate users. The component services within MySQL Server are responsible for managing various background processes and system-level functions, making this attack vector particularly dangerous as it can affect core operational capabilities.

From an operational perspective, successful exploitation of CVE-2023-21947 can result in complete denial of service conditions that severely impact database availability and business continuity. Organizations relying on MySQL Server for critical applications may experience extended downtime periods, potentially leading to significant financial losses and reputational damage. The vulnerability's requirement for high privileged access limits the attack surface compared to fully unauthenticated exploits, but it remains a serious concern for environments where privileged accounts might be compromised or where insider threats exist. The fact that this vulnerability affects multiple protocols suggests attackers can leverage various network entry points to execute the attack, increasing the overall risk profile.

Organizations should prioritize patch management to address this vulnerability by upgrading to MySQL Server versions 8.0.33 or later where this issue has been resolved. System administrators should implement network segmentation and access controls to limit privileged access and reduce the potential attack surface. Monitoring for unusual network activity or system instability patterns can help detect exploitation attempts. The vulnerability aligns with CWE-119, which addresses memory safety issues and improper access to memory, as well as ATT&CK technique T1499.004 which covers network denial of service attacks. Regular security assessments and vulnerability scanning should be conducted to identify similar weaknesses in the database infrastructure. Additionally, implementing robust backup and recovery procedures ensures that organizations can quickly restore services if this vulnerability is successfully exploited.

Reservation

12/17/2022

Disclosure

04/18/2023

Moderation

accepted

CPE

ready

EPSS

0.01357

KEV

no

Activities

very low

Sources

Want to know what is going to be exploited?

We predict KEV entries!