CVE-2019-2435 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	High
Remote	Yes
Type	Authentication bypass
Description	A flaw was found in mysql-connector prior to version 8.0.13. Unauthenticated attacker with network access via TLS could compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker and can result in unauthorized creation, deletion or modification access to critical data.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-898	python-mysql-connector	8.0.13-1	8.0.15-1	High	Fixed	FS#61758

Date	Advisory	Group	Package	Severity	Type
17 Feb 2019	ASA-201902-21	AVG-898	python-mysql-connector	High	authentication bypass

References
https://github.com/mysql/mysql-connector-python/commit/069bc6737dd13b7f3a41d7fc23b789b659d8e205 https://security.netapp.com/advisory/ntap-20190118-0002/ https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

References

https://github.com/mysql/mysql-connector-python/commit/069bc6737dd13b7f3a41d7fc23b789b659d8e205
https://security.netapp.com/advisory/ntap-20190118-0002/
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html