CVE-2021-35630: 
MySQL vulnerability analysis and mitigation

CVE-2021-35630 is a security vulnerability affecting MySQL Server versions 8.0.26 and prior. This vulnerability is related to the MySQL Server Options component and was disclosed in October 2021. The vulnerability allows high-privileged attackers with network access to potentially compromise MySQL server components (Oracle CPU Oct 2021).

The vulnerability has been assigned a CVSS v3.1 base score of 4.9 (MEDIUM), with the vector string AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N. This indicates that the vulnerability requires network access and high privileges to exploit, but does not require user interaction. The vulnerability affects the Server Options component of MySQL and could potentially lead to integrity impacts (NetApp Security).

If successfully exploited, this vulnerability could allow an attacker with high privileges to gain unauthorized modification access to MySQL Server data. The vulnerability specifically impacts the integrity of the system, though it does not affect confidentiality or availability (NetApp Security).

Oracle has released patches to address this vulnerability in their October 2021 Critical Patch Update. Users are advised to upgrade to the latest version of MySQL Server. The fix is included in subsequent releases after version 8.0.26 (Ubuntu Security).