CVE security advisories and vulnerability history for mysql-server by mysql.
1,008
Total CVEs
Published
0
In CISA KEV
Exploited in the wild
5
Public exploits
With known exploit
5.0
Avg CVSS
2016–2026
Last updated
Overview
mysql mysql-server has 1,008 published CVE records since 2016, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 5 have a known public exploit. The average CVSS base score across scored CVEs is 5.0.
This page aggregates every publicly disclosed vulnerability (CVE) affecting mysql mysql-server, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.
Severity and exploitation
How the CVSS severity of mysql mysql-server's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.
Critical1
High16
Medium621
Low64
306 additional CVEs have no CVSS severity score.
In CISA’s Known Exploited Vulnerabilities catalog
0
None of mysql mysql-server's CVEs are currently listed in CISA's KEV catalog.
Public exploits
5
5 of mysql mysql-server's CVEs have a known public exploit available.
Affected versions and CVEs
Browse every mysql mysql-server version named in a CVE, then pick one to see only the CVEs that affect it.
Common questions about mysql mysql-server vulnerabilities.
How many CVEs does mysql mysql-server have?
mysql mysql-server has 1,008 published CVE records since 2016.
How many mysql mysql-server CVEs are in CISA KEV?
None of mysql mysql-server's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.
Are there public exploits for mysql mysql-server vulnerabilities?
Yes — 5 of mysql mysql-server's CVEs have a known public exploit.
Which versions of mysql mysql-server are affected?
1,719 distinct mysql mysql-server versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.
What are the most common weakness types in mysql mysql-server CVEs?
mysql mysql-server's CVEs most often map to these CWE weakness types: CWE-400 (Uncontrolled Resource Consumption), CWE-770 (Allocation of Resources Without Limits or Throttling), CWE-732 (Incorrect Permission Assignment for Critical Resource), CWE-284 (Improper Access Control).
How many critical mysql mysql-server vulnerabilities are there?
mysql mysql-server has 1 critical and 16 high-severity CVEs.
What is the average severity of mysql mysql-server CVEs?
The average CVSS base score across mysql mysql-server's scored CVEs is 5.0.
