Lucene search

K
cveOracleCVE-2016-0643
HistoryApr 21, 2016 - 10:59 a.m.

CVE-2016-0643

2016-04-2110:59:12
oracle
web.nvd.nist.gov
110
cve-2016-0643
oracle
mysql
mariadb
vulnerability
dml
nvd

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.9

Confidence

Low

EPSS

0

Percentile

10.1%

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML.

Affected configurations

Nvd
Node
debiandebian_linuxMatch8.0
Node
redhatenterprise_linuxMatch6.0
OR
redhatenterprise_linuxMatch7.0
Node
ibmpowerkvmMatch2.1
OR
ibmpowerkvmMatch3.1
Node
opensuseleapMatch42.1
Node
oraclemysqlRange5.5.05.5.48
OR
oraclemysqlRange5.6.05.6.29
OR
oraclemysqlRange5.7.05.7.11
Node
mariadbmariadbRange5.5.205.5.49
OR
mariadbmariadbRange10.0.010.0.25
OR
mariadbmariadbRange10.1.010.1.14
VendorProductVersionCPE
debiandebian_linux8.0cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
redhatenterprise_linux6.0cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
redhatenterprise_linux7.0cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
ibmpowerkvm2.1cpe:2.3:a:ibm:powerkvm:2.1:*:*:*:*:*:*:*
ibmpowerkvm3.1cpe:2.3:a:ibm:powerkvm:3.1:*:*:*:*:*:*:*
opensuseleap42.1cpe:2.3:o:opensuse:leap:42.1:*:*:*:*:*:*:*
oraclemysql*cpe:2.3:a:oracle:mysql:*:*:*:*:*:*:*:*
mariadbmariadb*cpe:2.3:a:mariadb:mariadb:*:*:*:*:*:*:*:*

References

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

CVSS3

3.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Score

3.9

Confidence

Low

EPSS

0

Percentile

10.1%