Oracle MySQL vulnerabilities

1,328 known vulnerabilities affecting oracle/mysql.

Total CVEs

1,328

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL12HIGH71MEDIUM1064LOW181

Vulnerabilities

Page 38 of 67

CVE-2018-2776MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2776 [MEDIUM] CVE-2018-2776: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). S Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via XCom to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to ca

nvd

CVE-2018-2810MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2810 [MEDIUM] CVE-2018-2810: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versio Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cau

nvd

CVE-2018-2778MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2778 [MEDIUM] CVE-2018-2778: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abi

nvd

CVE-2018-2780MEDIUMCVSS 6.5≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2780 [MEDIUM] CVE-2018-2780: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abil

nvd

CVE-2018-2771MEDIUMCVSS 4.4≥ 5.5.0, ≤ 5.5.59≥ 5.6.0, ≤ 5.6.39+1 more2018-04-19

CVE-2018-2771 [MEDIUM] CVE-2018-2771: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Locking). Support Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Locking). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulne

nvd

CVE-2018-2805MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.392018-04-19

CVE-2018-2805 [MEDIUM] CVE-2018-2805: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: GIS Extension). Supported Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: GIS Extension). Supported versions that are affected are 5.6.39 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability

nvd

CVE-2018-2762MEDIUMCVSS 4.4≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2762 [MEDIUM] CVE-2018-2762: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). Supp Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result

nvd

CVE-2018-2817MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.59≥ 5.6.0, ≤ 5.6.39+1 more2018-04-19

CVE-2018-2817 [MEDIUM] CVE-2018-2817: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported v Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerabilit

nvd

CVE-2018-2787MEDIUMCVSS 5.5≥ 5.6.0, ≤ 5.6.39≥ 5.7.0, ≤ 5.7.212018-04-19

CVE-2018-2787 [MEDIUM] CVE-2018-2787: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versio Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauth

nvd

CVE-2018-2562HIGHCVSS 7.1≥ 5.5.0, ≤ 5.5.58≥ 5.6.0, ≤ 5.6.38+1 more2018-01-18

CVE-2018-2562 [HIGH] CVE-2018-2562: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supp Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnera

nvd

CVE-2018-2696HIGHCVSS 7.5≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2696 [HIGH] CVE-2018-2696: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privi Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerabilit

nvd

CVE-2018-2668MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.58≥ 5.6.0, ≤ 5.6.38+1 more2018-01-18

CVE-2018-2668 [MEDIUM] CVE-2018-2668: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulner

nvd

CVE-2018-2586MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2586 [MEDIUM] CVE-2018-2586: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability t

nvd

CVE-2018-2591MEDIUMCVSS 4.9≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.192018-01-18

CVE-2018-2591 [MEDIUM] CVE-2018-2591: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supp Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affected are 5.6.38 and prior and 5.7.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can resu

nvd

CVE-2018-2646MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2646 [MEDIUM] CVE-2018-2646: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability t

nvd

CVE-2018-2583MEDIUMCVSS 6.8≥ 5.6.0, ≤ 5.6.38≤ 5.7.202018-01-18

CVE-2018-2583 [MEDIUM] CVE-2018-2583: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Stored Procedure). Suppor Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Stored Procedure). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. While the vulnerability is in MySQL Server, attacks

nvd

CVE-2018-2667MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2667 [MEDIUM] CVE-2018-2667: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abi

nvd

CVE-2018-2573MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2573 [MEDIUM] CVE-2018-2573: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: GIS). Supported v Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: GIS). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in un

nvd

CVE-2018-2622MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.58≥ 5.6.0, ≤ 5.6.38+1 more2018-01-18

CVE-2018-2622 [MEDIUM] CVE-2018-2622: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported v Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerabilit

nvd

CVE-2018-2600MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18

CVE-2018-2600 [MEDIUM] CVE-2018-2600: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abi

nvd

← Previous38 / 67Next →