Lucene search

Veracode Vulnerability DatabaseVERACODE:18799

HistoryMay 16, 2019 - 1:47 a.m.

Privilege Escalation

2019-05-1601:47:52

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

41.7%

JSON

MySQL is vulnerable to privilege escalation vulnerability. A low privileged attacker with network access via multiple protocols could compromise MySQL Server resulting in unauthorized update, insert or delete access to some of MySQL Server accessible data.

CPENameOperatorVersion
rh-mysql57-mysqleq5.7.16__1.el7
rh-mysql57-mysqleq5.7.16__1.el6

CPE	Name	Operator	Version
	rh-mysql57-mysql	eq	5.7.16__1.el7
	rh-mysql57-mysql	eq	5.7.16__1.el6

References

www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html

www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixMSQL

www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL

www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixMSQL

www.securityfocus.com/bid/97822

www.securitytracker.com/id/1038287

access.redhat.com/errata/RHSA-2017:2886

access.redhat.com/security/updates/classification/#important

dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-17.html

dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-18.html

dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html

0.001 Low

EPSS

Percentile

41.7%

JSON

Related for VERACODE:18799