Unauthenticated Local File Content Retrieval Vulnerability in ruby-mysql

CVE-2021-3779 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

A malicious MySQL server can request local file content from a client using ruby-mysql prior to version 2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 and later.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.