CVE-2017-3321Improper Input Validation in Oracle Mysql Cluster

CWE-20Improper Input Validation3 documents3 sources
Severity
3.7LOWNVD
EPSS
1.1%
top 22.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Mysql Cluster
Timeline
PublishedJan 27
Latest updateMay 17

Description

Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: General). Supported versions that are affected are 7.2.19 and earlier, 7.3.8 and earlier and 7.4.5 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Cluster. CVSS v3.0 Base Scor

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

NVDoracle/mysql_cluster7.2.19+2
CVEListV5oracle/mysql_cluster7.2.19 and earlier, 7.3.8 and earlier, 7.4.5 and earlier+2

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-f52v-43r8-5wwj: Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: General)2022-05-17
CVEList
CVE-2017-3321: Vulnerability in the MySQL Cluster component of Oracle MySQL (subcomponent: Cluster: General)2017-01-27
CVE-2017-3321 — Improper Input Validation in Oracle | cvebase