Home > Vulnerability Database > CVE-2017-3318

Mend Vulnerability Database

CVE-2017-3318

Good to know:

Date: January 27, 2017

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.0 (Confidentiality impacts).

Severity Score

4.0

Related Resources (5)

Url: https://nvd.nist.gov/vuln/detail/CVE-2017-3318

Url: http://www.securityfocus.com/bid/95588

Url: https://security.gentoo.org/glsa/201702-17

Url: https://access.redhat.com/security/cve/CVE-2017-3318

Url: https://www.mend.io/vulnerability-database/CVE-2017-3318

Severity Score

4.0

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Top Fix

Upgrade Version

CVSS v3.1

Base Score:	4.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	HIGH
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	1.0
Access Vector (AV):	LOCAL
Access Complexity (AC):	HIGH
Authentication (AU):	SINGLE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend Vulnerability Database

We found results for “”

CVE-2017-3318

Good to know:

Date: January 27, 2017

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?