CVE-2023-21980

HIGH

MySQL < 5.7.41 and 8.0.32 - Authenticated Remote Code Execution via Client Programs

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-21980. PoCs published by ctkqiang.

AI-analyzed exploit summary The repository contains a functional exploit for CVE-2023-21980, targeting a MySQL client vulnerability via a malicious shared library loaded through a crafted server response. The exploit leverages UTF-16 encoding to bypass path validation and achieve arbitrary code execution.

Description

Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.41 and prior and 8.0.32 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS 3.1 Base Score 7.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H).

Exploits (1)

github WORKING POC 4 stars

by ctkqiang · gopoc

https://github.com/ctkqiang/CVE-Exploits/tree/main/CVE-2023-21980

View Code ZIP pw:eip

The repository contains a functional exploit for CVE-2023-21980, targeting a MySQL client vulnerability via a malicious shared library loaded through a crafted server response. The exploit leverages UTF-16 encoding to bypass path validation and achieve arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: MySQL client (versions < 8.0.33)

No auth needed

Prerequisites: gcc · netcat · MySQL client < 8.0.33

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory

https://security.netapp.com/advisory/ntap-20230427-0007/

Vendor Advisory vendor-advisory

https://www.oracle.com/security-alerts/cpuapr2023.html

Scores

CVSS v3 7.1

EPSS 0.0043

EPSS Percentile 63.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-284

Status published

Products (1)

oracle/mysql 5.0.0 - 5.7.41

Published Apr 18, 2023

Tracked Since Feb 18, 2026