CVE-2007-6313Mysql Community Server vulnerability

CWE-2645 documents5 sources
Severity
6.5MEDIUMNVD
EPSS
0.6%
top 31.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mysql Community Server
Timeline
PublishedFeb 18
Latest updateMay 1

Description

MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG, which allows remote authorized users to execute arbitrary BINLOG statements.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages1 packages

NVDmysql/mysql_community_server26 versions+25

🔴Vulnerability Details

2
GHSA
GHSA-xc48-wrvc-q3cx: MySQL Server 52022-05-01
CVEList
CVE-2007-6313: MySQL Server 52008-02-18

📋Vendor Advisories

1
Red Hat
mysql: privilege escalation via BINLOG2007-10-15

💬Community

1
Bugzilla
CVE-2007-6313 mysql: privilege escalation via BINLOG2008-02-19
CVE-2007-6313 — Mysql Community Server vulnerability | cvebase