Published: 23/04/2019 Updated: 05/08/2022

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 4.9 | Impact Score: 3.6 | Exploitability Score: 1.2

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.6.43 and prior, 5.7.25 and prior and 8.0.15 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle mysql
canonical ubuntu linux 18.04
canonical ubuntu linux 18.10
canonical ubuntu linux 19.04
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
mariadb mariadb
opensuse leap 15.0
opensuse leap 15.1
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0
redhat enterprise linux server 7.0
redhat enterprise linux eus 8.1
redhat enterprise linux eus 8.2
redhat enterprise linux server tus 8.2
redhat enterprise linux server aus 8.2
redhat enterprise linux server tus 8.4
redhat enterprise linux eus 8.4
redhat enterprise linux server tus 8.6
redhat enterprise linux server aus 8.6
redhat enterprise linux eus 8.6
redhat enterprise linux server aus 8.4

Debian Bug report logs - #927308 mysql-57: Security fixes from the April 2019 CPU Package: src:mysql-57; Maintainer for src:mysql-57 is Debian MySQL Maintainers <pkg-mysql-maint@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 17 Apr 2019 19:57:02 UTC Severity: grave Tags: ...

Several security issues were fixed in MariaDB ...

Several security issues were fixed in MySQL ...

Several security issues were fixed in MariaDB ...

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling) Supported versions that are affected are 5642 and prior, 5724 and prior and 8013 and prior Difficult to exploit vulnerability allows low privileged attacker with access to the physical communication segment attached to the hardware where ...

Synopsis Moderate: rh-mariadb102-mariadb and rh-mariadb102-galera security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for rh-mariadb102-mariadb and rh-mariadb102-galera is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as havin ...

Synopsis Moderate: mariadb:103 security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for the mariadb:103 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Sco ...

Synopsis Important: rh-mariadb103-mariadb and rh-mariadb103-galera security update Type/Severity Security Advisory: Important Topic An update for rh-mariadb103-mariadb and rh-mariadb103-galera is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a securi ...

Synopsis Important: mariadb:103 security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for the mariadb:103 module is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a sec ...

Synopsis Moderate: mariadb security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for mariadb is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) ba ...

Synopsis Important: rh-mysql80-mysql security update Type/Severity Security Advisory: Important Topic An update for rh-mysql80-mysql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring Syste ...

Synopsis Important: mysql:80 security update Type/Severity Security Advisory: Important Topic An update for the mysql:80 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CV ...

Impact: Moderate Public Date: 2019-04-16 Bugzilla: 1702976: CVE-2019-2627 mysql: Server: Security: Privi ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html https://support.f5.com/csp/article/K32798641 https://usn.ubuntu.com/3957-1/https://usn.ubuntu.com/3957-2/https://usn.ubuntu.com/3957-3/https://access.redhat.com/errata/RHSA-2019:2327 https://usn.ubuntu.com/4070-3/https://access.redhat.com/errata/RHSA-2019:2484 http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00032.html http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00035.html https://access.redhat.com/errata/RHSA-2019:2511 https://access.redhat.com/errata/RHSA-2019:3708 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927308 https://usn.ubuntu.com/3957-3/

Get Started

CVE-2019-2627

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect