cve 2024 20973

CVE-2024-20973 is a denial-of-service vulnerability in Oracle MySQL Server's query optimizer component. It affects MySQL releases up to 8.0.35 and 8.2.0, allowing a low-privileged, network-accessible account to trigger a hang or repeated crash of the MySQL server process. This flaw can be exploited remotely to cause a reliable denial-of-service condition. The vulnerability was disclosed in January 2024 and requires mitigation through patching or configuration changes to protect affected MySQL instances.