CVSS: 5.3EPSS: 1%CPEs: 1EXPL: 0CVE-2017-10203
https://notcve.org/view.php?id=CVE-2017-10203
19 Oct 2017 — Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/Net). Supported versions that are affected are 6.9.9 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Connectors. CVSS 3.0 Base Score 5.3 (Availability impacts). • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-10277
https://notcve.org/view.php?id=CVE-2017-10277
19 Oct 2017 — Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/Net). Supported versions that are affected are 6.9.9 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors acces... • http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html •
CVSS: 5.9EPSS: 0%CPEs: 4EXPL: 1CVE-2009-4833
https://notcve.org/view.php?id=CVE-2009-4833
29 Apr 2010 — MySQL Connector/NET before 6.0.4, when using encryption, does not verify SSL certificates during connection, which allows remote attackers to perform a man-in-the-middle attack with a spoofed SSL certificate. MySQL Connector/NET anterior a v6.0.4, cuando se utiliza encriptación, no verificar los certificados SSL durante la conexión, lo cual permite a atacantes remotos llevar a cabo un ataque "man-in-the-middle" (hombre en el medio) con un certificado SSL falso. • http://bugs.mysql.com/bug.php?id=38700 • CWE-20: Improper Input Validation •