CVE-2020-2896: 
MySQL vulnerability analysis and mitigation

CVE-2020-2896 is a security vulnerability affecting MySQL Server's Information Schema component. The vulnerability was discovered in MySQL versions 8.0.19 and prior. This easily exploitable vulnerability allows high privileged attackers with network access via multiple protocols to compromise MySQL Server (CVE Mitre).

The vulnerability has a CVSS 3.0 Base Score of 4.9 (Medium severity) with the following vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H. The attack requires network access and high privileges, but has low attack complexity and requires no user interaction (NVD).

Successful exploitation of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. The vulnerability only affects availability with no impact on confidentiality or integrity (Oracle Security Alert).

The vulnerability was fixed in MySQL version 8.0.20. Users should upgrade to this version or later. For Ubuntu systems, the fix is available in mysql-server-8.0 version 8.0.20-0ubuntu0.20.04.1 for Ubuntu 20.04 and version 8.0.20-0ubuntu0.19.10.1 for Ubuntu 19.10 (USN-4350-1).