CVE-2026-22005 in MySQL Serverinformation

Résumé

par MITRE • 22/04/2026

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

Oracle

Réserver

05/01/2026

Divulgation

22/04/2026

Modérer

accepté

Entrée

VDB-358675

CPE

prêt

CWE

CWE-404 (confirmé)

CVSS

4.9 (CNA)

EPSS

0.00047

KEV

non

Activités

très faible

Secteur

Transportation, Pharma, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-22005
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-22005
CVE Details	https://www.cvedetails.com/cve/CVE-2026-22005/

◂ Précédent Aperçu Suivant ▸

Interested in the pricing of exploits?

See the underground prices here!