CVE-2021-35636: 
MySQL vulnerability analysis and mitigation

CVE-2021-35636 is a security vulnerability affecting MySQL Server versions 5.7.35 and prior, and 8.0.26 and prior. The vulnerability was disclosed in October 2021 and is specifically related to the MySQL Server Optimizer component (NVD, Oracle Security).

The vulnerability is classified as a medium severity issue with a CVSS v3.1 base score of 4.9. The vulnerability requires high privileges and network access to exploit. The attack vector is network-based with low attack complexity, requiring high privileges but no user interaction. The scope is unchanged, with no impact on confidentiality or integrity, but potential impact on availability (Oracle Security).

If successfully exploited, this vulnerability could allow a high-privileged attacker with network access to affect the availability of MySQL Server. The vulnerability could potentially lead to a denial of service condition in the MySQL Server Optimizer component (NetApp Security).

Oracle has released patches to address this vulnerability in MySQL version 8.0.27. Users are strongly recommended to update to this version or apply the relevant security patches. For systems running MySQL 5.7, users should upgrade to version 5.7.36. The patches are available through the official Oracle channels and various vendor-specific updates (Ubuntu Security).