CVE-2018-3282 — Oracle Mysql vulnerability
36 documents7 sources
Severity
4.9MEDIUMNVD
EPSS
0.1%
top 67.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 17
Latest updateMay 13
Description
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL …
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:HExploitability: 1.2 | Impact: 3.6
Affected Packages8 packages
Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 12.04, 14.04, 16.04, 18.04, 18.10
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-hv5g-3886-rpxc: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)↗2022-05-13
OSV▶
CVE-2018-3282: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)↗2018-10-17
CVEList▶
CVE-2018-3282: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Storage Engines)↗2018-10-17
📋Vendor Advisories
29Red Hat
▶
💬Community
3Bugzilla
▶
Bugzilla▶
CVE-2018-6119 chromium-browser: Spoof of contents of the Omnibox (URL bar) via a crafted HTML page↗2018-09-26
Bugzilla
▶