CVE-2026-35240 in MySQL Serverinfo

Zusammenfassung

von MITRE • 22.04.2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Oracle

Reservieren

01.04.2026

Veröffentlichung

22.04.2026

Moderieren

akzeptiert

Eintrag

VDB-358702

CPE

bereit

CWE

CWE-404 (bestätigt)

CVSS

4.9 (CNA)

EPSS

0.00043

KEV

nein

Aktivitäten

very low

Sektor

Police, Energy, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-35240
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-35240
CVE Details	https://www.cvedetails.com/cve/CVE-2026-35240/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!