Home > Vulnerability Database > CVE-2017-10268

Mend.io Vulnerability Database

CVE-2017-10268

Date: October 19, 2017

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 4.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N).

Severity Score

9.3

Related Resources (17)

Url: http://www.securityfocus.com/bid/101390

Url: https://access.redhat.com/errata/RHSA-2018:2729

Url: https://security.netapp.com/advisory/ntap-20171019-0002/

Url: https://access.redhat.com/errata/RHSA-2018:2439

Url: https://access.redhat.com/errata/RHSA-2019:1258

Url: https://access.redhat.com/errata/RHSA-2017:3265

Url: https://access.redhat.com/errata/RHSA-2017:3442

Url: https://www.debian.org/security/2018/dsa-4341

Url: https://lists.debian.org/debian-lts-announce/2018/06/msg00015.html

Url: http://www.debian.org/security/2017/dsa-4002

Url: https://access.redhat.com/security/cve/CVE-2017-10268

Url: http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Url: https://nvd.nist.gov/vuln/detail/CVE-2017-10268

Url: https://access.redhat.com/errata/RHSA-2018:0574

Url: http://www.securitytracker.com/id/1039597

Url: https://access.redhat.com/errata/RHSA-2018:0279

Url: https://www.mend.io/vulnerability-database/CVE-2017-10268

Severity Score

9.3

Weakness Type (CWE)

Information Leak / Disclosure

CWE-200

Insufficient Information

NVD-CWE-noinfo

CVSS v3

Base Score:	9.3
Attack Vector (AV):
Attack Complexity (AC):
Privileges Required (PR):
User Interaction (UI):
Scope (S):
Confidentiality (C):	COMPLETE
Integrity (I):	COMPLETE
Availability (A):	COMPLETE

CVSS v2

Base Score:	8.8
Access Vector (AV):
Access Complexity (AC):
Authentication (AU):
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2017-10268

Date: October 19, 2017

Severity Score

Related Resources (17)

Severity Score

Weakness Type (CWE)

CVSS v3

CVSS v2

Do you need more information?