search cancel

Vulnerability Scan Issues for MySql problems on NetOps Portal

book

Article ID: 252579

calendar_today

Updated On:

Products

DX NetOps CA Performance Management - Usage and Administration

Issue/Introduction

We have some HIGH and MEDIUM vulnerability issues. How can we resolve or remedy these issues?

  • Oracle MySQL Vulnerability: CVE-2021-2171; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2021-2174; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2021-2307; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21444; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21451; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21460; affects up to 8.0.23.

Is the DX NetOps Performance Management Portal web server and it's MySql database vulnerable to these problems?

How can we resolve these vulnerabilities?

Environment

All supported DX NetOps Performance Management releases

Cause

MySql vulnerabilities

Resolution

These are resolved with the 22.2.2 or newer DX NetOps Performance Management releases. That version introduces MySql 8.0.30 which remediates these vulnerabilities.

  • Oracle MySQL Vulnerability: CVE-2021-2171; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2021-2174; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2021-2307; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21444; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21451; affects up to 8.0.23.
  • Oracle MySQL Vulnerability: CVE-2022-21460; affects up to 8.0.23.