Veracode Vulnerability DatabaseVERACODE:18784Information Disclosure
0.001 Low
EPSS
Percentile
31.6%
MySQL is vulnerable to information disclosure vulnerability. A high privileged attacker with network access via multiple protocols could compromise MySQL Server with the help of human interaction of another person along with the attacker resulting in unauthorized read access to a subset of MySQL Server accessible data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rh-mysql57-mysql | eq | 5.7.16__1.el7 | |
| rh-mysql57-mysql | eq | 5.7.16__1.el6 |
References
www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html#AppendixMSQL
www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html#AppendixMSQL
www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html#AppendixMSQL
www.securityfocus.com/bid/95470
www.securitytracker.com/id/1037640
access.redhat.com/errata/RHSA-2017:2886
access.redhat.com/security/updates/classification/#important
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-17.html
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-18.html
dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-19.html
security.gentoo.org/glsa/201702-17
Related
