CVE-2007-3781 — Mysql Community Server vulnerability

6 documents6 sources
Severity
4.0MEDIUMNVD
EPSS
0.6%
top 29.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mysql Community Server
Timeline
PublishedJul 15
Latest updateMay 1

Description

MySQL Community Server before 5.0.45 does not require privileges such as SELECT for the source table in a CREATE TABLE LIKE statement, which allows remote authenticated users to obtain sensitive information such as the table structure.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

â–¶NVDmysql/community_server5.0.41, 5.0.44+1

🔴Vulnerability Details

2
GHSA
GHSA-494v-q3hh-x3w8: MySQL Community Server before 5↗2022-05-01
â–¶
CVEList
CVE-2007-3781: MySQL Community Server before 5↗2007-07-15
â–¶

📋Vendor Advisories

2
Ubuntu
MySQL vulnerabilities↗2007-12-21
â–¶
Red Hat
New release of MySQL fixes security bugs↗2007-07-04
â–¶

💬Community

1
Bugzilla
CVE-2007-3781 CVE-2007-3782 New release of MySQL fixes security bugs↗2007-07-17
â–¶
CVE-2007-3781 — Mysql Community Server vulnerability | cvebase