Published: 18/07/2018 Updated: 04/08/2022

CVSS v2 Base Score: 4.9 | Impact Score: 4.9 | Exploitability Score: 6.8

CVSS v3 Base Score: 5 | Impact Score: 4.2 | Exploitability Score: 0.7

VMScore: 436

Vector: AV:N/AC:M/Au:S/C:N/I:P/A:P

Vulnerability in the MySQL Client component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior, 5.7.22 and prior and 8.0.11 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client as well as unauthorized update, insert or delete access to some of MySQL Client accessible data. CVSS 3.0 Base Score 5.0 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H).

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql
netapp snapcenter -
netapp storage automation store -
netapp oncommand workflow automation -
netapp oncommand insight -
canonical ubuntu linux 18.04
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
canonical ubuntu linux 12.04
debian debian linux 8.0
debian debian linux 9.0
mariadb mariadb
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0
redhat enterprise linux server 7.0

Debian Bug report logs - #904121 mysql-57: Security fixes from the July 2018 CPU Package: src:mysql-57; Maintainer for src:mysql-57 is Debian MySQL Maintainers <pkg-mysql-maint@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 20 Jul 2018 04:21:02 UTC Severity: grave Tags: ...

Several security issues were fixed in MySQL ...

Synopsis Moderate: rh-mariadb102-mariadb and rh-mariadb102-galera security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for rh-mariadb102-mariadb and rh-mariadb102-galera is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as havin ...

Synopsis Moderate: rh-mysql57-mysql security update Type/Severity Security Advisory: Moderate Topic An update for rh-mysql57-mysql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System ( ...

Synopsis Moderate: mariadb security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for mariadb is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ba ...

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling) Supported versions that are affected are 5642 and prior, 5724 and prior and 8013 and prior Difficult to exploit vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where ...

Vulnerability in the MySQL Client component of Oracle MySQL (subcomponent: Client programs) Supported versions that are affected are 5560 and prior, 5640 and prior, 5722 and prior and 8011 and prior Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Client Suc ...

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options) Supported versions that are affected are 5560 and prior Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vulnerability can result in unaut ...

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL) Supported versions that are affected are 5722 and prior Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vulnerability can result in unauthorize ...

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump) Supported versions that are affected are 5640 and prior Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server Successful attacks of this vulnerability can result in unautho ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html http://www.securityfocus.com/bid/104779 https://security.netapp.com/advisory/ntap-20180726-0002/http://www.securitytracker.com/id/1041294 https://usn.ubuntu.com/3725-2/https://usn.ubuntu.com/3725-1/https://lists.debian.org/debian-lts-announce/2018/11/msg00004.html https://www.debian.org/security/2018/dsa-4341 https://access.redhat.com/errata/RHSA-2018:3655 https://access.redhat.com/errata/RHSA-2019:1258 https://access.redhat.com/errata/RHSA-2019:2327 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=904121 https://nvd.nist.gov https://usn.ubuntu.com/3725-1/

Get Started

CVE-2018-3081

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect