CVE-2024-1193
LOWNavicat 12.0.29 - Denial of Service in MySQL Connection Handler
Title source: llmDescription
A vulnerability was found in Navicat 12.0.29. It has been rated as problematic. This issue affects some unknown processing of the component MySQL Conecction Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-252683. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
References (3)
Core 3
Core References
Permissions Required vdb-entry
https://vuldb.com/?id.252683
Permissions Required signature
permissions-required
https://vuldb.com/?ctiid.252683
Exploit exploit
https://fitoxs.com/vuldb/24-exploit-perl.txt
Scores
CVSS v3
3.3
EPSS
0.0035
EPSS Percentile
26.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-404
Status
published
Products (1)
navicat/navicat
12.0.29
Published
Feb 02, 2024
Tracked Since
Feb 18, 2026