CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-3320 – mysql: Server: Security: Encryption unspecified vulnerability (CPU Jan 2017)
https://notcve.org/view.php?id=CVE-2017-3320
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html http://www.securityfocus.com/bid/95470 http://www.securitytracker.com/id/1037640 https://access.redhat.com/errata/RHSA-2017:2886 https://security.gentoo.org/glsa/201702-17 https://access.redhat.com/security/cve/CVE-2017-3320 https://bugzilla.redhat.com/show_bug.cgi?id=1414360 •
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8286
https://notcve.org/view.php?id=CVE-2016-8286
Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows remote authenticated users to affect confidentiality via vectors related to Server: Security: Privileges. Vulnerabilidad no especificada en Oracle MySQL 5.7.14 y versiones anteriores permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores relacionados con Server: Security: Privileges. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93745 http://www.securitytracker.com/id/1037050 https://security.gentoo.org/glsa/201701-01 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8287
https://notcve.org/view.php?id=CVE-2016-8287
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Replication. Vulnerabilidad no especificada en Oracle MySQL 5.7.13 y versiones anteriores permite a administradores remotos afectar la disponibilidad a través de vectores relacionados con Server: Replication. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93727 http://www.securitytracker.com/id/1037050 https://security.gentoo.org/glsa/201701-01 •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8289
https://notcve.org/view.php?id=CVE-2016-8289
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows local users to affect integrity and availability via vectors related to Server: InnoDB. Vulnerabilidad no especificada en Oracle MySQL 5.7.13 y versiones anteriores permite a usuarios locales afectar la integridad y la disponibilidad a través de vectores relacionados con Server: InnoDB. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93720 http://www.securitytracker.com/id/1037050 https://security.gentoo.org/glsa/201701-01 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8290
https://notcve.org/view.php?id=CVE-2016-8290
Unspecified vulnerability in Oracle MySQL 5.7.13 and earlier allows remote administrators to affect availability via vectors related to Server: Performance Schema, a different vulnerability than CVE-2016-5633. Vulnerabilidad no especificada en Oracle MySQL 5.7.13 y versiones anteriores permite a administradores remotos afectar la disponibilidad a través de vectores relacionados con Server: Performance Schema, una vulnerabilidad diferente a CVE-2016-5633. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html http://www.securityfocus.com/bid/93733 http://www.securitytracker.com/id/1037050 https://security.gentoo.org/glsa/201701-01 •