CVE-2016-8286 — Sensitive Information Exposure in Oracle Mysql

CWE-200 — Sensitive Information Exposure5 documents5 sources

Severity

3.1LOWNVD

EPSS

0.1%

top 74.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Mysql

Timeline

PublishedOct 25

Latest updateMay 17

Description

Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows remote authenticated users to affect confidentiality via vectors related to Server: Security: Privileges.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages1 packages

▶NVDoracle/mysql5.7.14

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-4g76-2mrg-gxqp: Unspecified vulnerability in Oracle MySQL 5↗2022-05-17

▶

OSV

CVE-2016-8286: Unspecified vulnerability in Oracle MySQL 5↗2016-10-25

▶

📋Vendor Advisories

Red Hat

mysql: unspecified vulnerability in subcomponent: Server: Security: Privileges (CPU October 2016)↗2016-10-19

▶

💬Community

Bugzilla

CVE-2016-8286 mysql: unspecified vulnerability in subcomponent: Server: Security: Privileges (CPU October 2016)↗2016-10-19

▶