CVE-2017-3305

🗓️ 24 Apr 2017 19:00:00Reported by oracleType

Vulnerability in Oracle MySQL Server component allows unauthorized access to dat

Reporter	Title	Published	Views	Family All 55
CNVD	MySQL Man-in-the-Middle Security Bypass Vulnerability	27 Mar 201700:00	–	cnvd
CVE	CVE-2017-3305	24 Apr 201719:00	–	cve
FreeBSD	MySQL -- multiple vulnerabilities	19 Apr 201700:00	–	freebsd
Debian	[SECURITY] [DLA 916-1] mysql-5.5 security update	25 Apr 201720:47	–	debian
Debian	[SECURITY] [DSA 3834-1] mysql-5.5 security update	25 Apr 201715:15	–	debian
Debian	[SECURITY] [DSA 3834-1] mysql-5.5 security update	25 Apr 201715:15	–	debian
Tenable Nessus	Debian DLA-916-1 : mysql-5.5 security update (Riddle)	26 Apr 201700:00	–	nessus
Tenable Nessus	Debian DSA-3834-1 : mysql-5.5 - security update (Riddle)	26 Apr 201700:00	–	nessus
Tenable Nessus	FreeBSD : MySQL -- multiple vulnerabilities (d9e01c35-2531-11e7-b291-b499baebfeaf) (Riddle)	20 Apr 201700:00	–	nessus
Tenable Nessus	MiracleLinux 7 : rh-mysql56-mysql-5.6.37-5.el7 (AXSA:2017-2301:01)	16 Jan 202600:00	–	nessus

[
  {
    "product": "MySQL Server",
    "vendor": "Oracle Corporation",
    "versions": [
      {
        "status": "affected",
        "version": "5.5.55 and earlier"
      },
      {
        "status": "affected",
        "version": "5.6.35 and earlier"
      }
    ]
  }
]

Source	Link
riddle	www.riddle.link/
oracle	www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html
access	www.access.redhat.com/errata/RHSA-2017:2787
openwall	www.openwall.com/lists/oss-security/2017/03/17/3
debian	www.debian.org/security/2017/dsa-3834
securityfocus	www.securityfocus.com/bid/97023
securitytracker	www.securitytracker.com/id/1038287

08 Dec 2017 10:57Current

5.3Medium risk

Vulners AI Score5.3

EPSS0.00105