CVE-2016-5584 — Sensitive Information Exposure in Oracle Mysql

CWE-200 — Sensitive Information Exposure9 documents6 sources

Severity

4.4MEDIUMNVD

EPSS

0.4%

top 36.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mariadb Oracle Mysql Debian Linux

Timeline

PublishedOct 25

Latest updateMay 14

Description

Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.7 | Impact: 3.6

Affected Packages2 packages

▶NVDoracle/mysql5.5.0 — 5.5.52+2

▶NVDmariadb/mariadb5.5.0 — 5.5.53+2

Also affects: Debian Linux 8.0

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-m4x2-9645-g5v7: Unspecified vulnerability in Oracle MySQL 5↗2022-05-14

▶

OSV

CVE-2016-5584: Unspecified vulnerability in Oracle MySQL 5↗2016-10-19

▶

📋Vendor Advisories

Ubuntu

MySQL vulnerabilities↗2016-10-25

▶

Red Hat

mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU October 2016)↗2016-10-19

▶

💬Community

Bugzilla

CVE-2016-3492 CVE-2016-5507 CVE-2016-5609 CVE-2016-5612 CVE-2016-5616 CVE-2016-5617 CVE-2016-5626 CVE-2016-5627 CVE-2016-5629 CVE-2016-5630 CVE-2016-8283 CVE-2016-8284 CVE-2016-8288 community-mysql: v↗2016-10-19

▶

Bugzilla

CVE-2016-3492 CVE-2016-5612 CVE-2016-5616 CVE-2016-5617 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-8283 mariadb-galera: various flaws [fedora-all]↗2016-10-19

▶

Bugzilla

CVE-2016-5584 mysql: unspecified vulnerability in subcomponent: Server: Security: Encryption (CPU October 2016)↗2016-10-19

▶

Bugzilla

CVE-2016-3492 CVE-2016-5612 CVE-2016-5616 CVE-2016-5617 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-8283 mariadb: various flaws [fedora-all]↗2016-10-19

▶