Veracode Vulnerability DatabaseVERACODE:18819Information Disclosure
0.002 Low
EPSS
Percentile
56.6%
MySQL is vulnerable to information disclosure attacks. A remote user could exploit a flaw in the C API component to compromise MySQL Server via multiple protocols which leads to unauthorized read access to a subset of MySQL Server accessible data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rh-mysql57-mysql | eq | 5.7.16__1.el7 | |
| rh-mysql57-mysql | eq | 5.7.16__1.el6 |
References
www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixMSQL
www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL
www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixMSQL
www.securityfocus.com/bid/99808
www.securitytracker.com/id/1038928
access.redhat.com/errata/RHSA-2017:2886
access.redhat.com/security/updates/classification/#important
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-17.html
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-18.html
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html
Related
