383
VMScore

CVE-2016-3615

Published: 21/07/2016 Updated: 27/12/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.3 | Impact Score: 3.6 | Exploitability Score: 1.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Vulnerability Summary

Unspecified vulnerability in Oracle MySQL 5.5.49 and previous versions, 5.6.30 and previous versions, and 5.7.12 and previous versions and MariaDB prior to 5.5.50, 10.0.x prior to 10.0.26, and 10.1.x prior to 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: DML.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle linux 7

mariadb mariadb

oracle mysql

ibm powerkvm 2.1

ibm powerkvm 3.1

debian debian linux 8.0

canonical ubuntu linux 12.04

canonical ubuntu linux 14.04

canonical ubuntu linux 15.10

canonical ubuntu linux 16.04

Vendor Advisories

Several issues have been discovered in the MySQL database server The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5550 Please see the MySQL 55 Release Notes and Oracle's Critical Patch Update advisory for further details: devmysqlcom/doc/relnotes/mysql/55/en/news-5-5-50html wwworaclecom/tec ...
Several security issues were fixed in MySQL ...
Unspecified vulnerability in Oracle MySQL 5630 and earlier allows remote administrators to affect availability via vectors related to Server: RBR (CVE-2016-5440 ) Unspecified vulnerability in Oracle MySQL 5630 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB (CVE-2016-3459 ) Unspecified vul ...
Oracle Solaris Third Party Bulletin - April 2017 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical Patch Upda ...
Oracle Critical Patch Update Advisory - July 2016 Description A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities Critical Patch Update patches are usually cumulative, but each advisory describes only the security fixes added since the previous C ...
It was found that the MariaDB client library did not properly check host names against server identities noted in the X509 certificates when establishing secure connections using TLS/SSL A man-in-the-middle attacker could possibly use this flaw to impersonate a server to a client (CVE-2016-2047 ) Unspecified vulnerability in Oracle MySQL 5546 ...
Oracle Linux Bulletin - July 2016 Description The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released ...