Oracle MySQL vulnerabilities
1,328 known vulnerabilities affecting oracle/mysql.
Total CVEs
1,328
CISA KEV
0
Public exploits
50
Exploited in wild
0
Severity breakdown
CRITICAL12HIGH71MEDIUM1064LOW181
Vulnerabilities
Page 39 of 67
CVE-2018-2576MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2576 [MEDIUM] CVE-2018-2576: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability t
nvd
CVE-2018-2612MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2612 [MEDIUM] CVE-2018-2612: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versio
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauth
nvd
CVE-2018-2647MEDIUMCVSS 5.5≥ 5.6.0, ≤ 5.6.38≤ 5.7.202018-01-18
CVE-2018-2647 [MEDIUM] CVE-2018-2647: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Sup
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can res
nvd
CVE-2018-2703MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2703 [MEDIUM] CVE-2018-2703: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privi
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerabili
nvd
CVE-2018-2665MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.58≥ 5.6.0, ≤ 5.6.38+1 more2018-01-18
CVE-2018-2665 [MEDIUM] CVE-2018-2665: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulner
nvd
CVE-2018-2590MEDIUMCVSS 4.9≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2590 [MEDIUM] CVE-2018-2590: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schem
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability
nvd
CVE-2018-2565MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2565 [MEDIUM] CVE-2018-2565: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supporte
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abilit
nvd
CVE-2018-2640MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.58≥ 5.6.0, ≤ 5.6.38+1 more2018-01-18
CVE-2018-2640 [MEDIUM] CVE-2018-2640: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.58 and prior, 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulner
nvd
CVE-2018-2645MEDIUMCVSS 4.9≥ 5.6.0, ≤ 5.6.38≥ 5.7.0, ≤ 5.7.202018-01-18
CVE-2018-2645 [MEDIUM] CVE-2018-2645: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schem
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability
nvd
CVE-2017-10155HIGHCVSS 7.5v5.6.0v5.6.1+51 more2017-10-19
CVE-2017-10155 [HIGH] CVE-2017-10155: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth).
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability c
nvd
CVE-2017-10320MEDIUMCVSS 4.9≥ 5.7.0, ≤ 5.7.192017-10-19
CVE-2017-10320 [MEDIUM] CVE-2017-10320: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supporte
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ab
nvd
CVE-2017-10313MEDIUMCVSS 4.9≤ 5.7.192017-10-19
CVE-2017-10313 [MEDIUM] CVE-2017-10313: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). S
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Group Replication GCS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthor
nvd
CVE-2017-10294MEDIUMCVSS 4.9v5.6.0v5.6.1+51 more2017-10-19
CVE-2017-10294 [MEDIUM] CVE-2017-10294: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can
nvd
CVE-2017-10284MEDIUMCVSS 4.9≤ 5.7.182017-10-19
CVE-2017-10284 [MEDIUM] CVE-2017-10284: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure)
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Stored Procedure). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unaut
nvd
CVE-2017-10379MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.57≥ 5.6.0, ≤ 5.6.37+1 more2017-10-19
CVE-2017-10379 [MEDIUM] CWE-863 CVE-2017-10379: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Support
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks
nvd
CVE-2017-10311MEDIUMCVSS 4.9≤ 5.7.192017-10-19
CVE-2017-10311 [MEDIUM] CVE-2017-10311: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abili
nvd
CVE-2017-10227MEDIUMCVSS 4.9≥ 5.6.0, ≤ 5.6.37≥ 5.7.0, ≤ 5.7.192017-10-19
CVE-2017-10227 [MEDIUM] CVE-2017-10227: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can
nvd
CVE-2017-10296MEDIUMCVSS 4.9≤ 5.7.182017-10-19
CVE-2017-10296 [MEDIUM] CVE-2017-10296: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abili
nvd
CVE-2017-10384MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.57≥ 5.6.0, ≤ 5.6.37+1 more2017-10-19
CVE-2017-10384 [MEDIUM] CVE-2017-10384: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.57 and earlier 5.6.37 and earlier 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerabi
nvd
CVE-2017-10165MEDIUMCVSS 4.9≤ 5.7.192017-10-19
CVE-2017-10165 [MEDIUM] CVE-2017-10165: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Sup
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthoriz
nvd