CVE-2017-10167 in MySQL Serverinfo

Summary

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

06/21/2017

Disclosure

10/19/2017

Moderation

VulDB entry created

Entries

VDB-108175 (1)

CPE

ready

CWE

CWE-284 (Confirmed)

CVSS

6.5

EPSS

0.00449

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-10167
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-10167
CVE Details	https://www.cvedetails.com/cve/CVE-2017-10167/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!