Published: 24/04/2017 Updated: 03/10/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and previous versions. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle connector\\/j

Two vulnerabilities have been found in the MySQL Connector/J JDBC driver For the stable distribution (jessie), these problems have been fixed in version 5142-1~deb8u1 For the upcoming stable distribution (stretch), these problems have been fixed in version 5142-1 For the unstable distribution (sid), these problems have been fixed in version ...

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J) Supported versions that are affected are 5141 and earlier Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors Successful attacks of this vulner ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html http://www.securityfocus.com/bid/97836 http://www.securitytracker.com/id/1038287 http://www.debian.org/security/2017/dsa-3857 https://nvd.nist.gov https://www.debian.org/security/./dsa-3857

CVE-2017-3589

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect