Oracle MySQL vulnerabilities
1,328 known vulnerabilities affecting oracle/mysql.
Total CVEs
1,328
CISA KEV
0
Public exploits
50
Exploited in wild
0
Severity breakdown
CRITICAL12HIGH71MEDIUM1064LOW181
Vulnerabilities
Page 40 of 67
CVE-2017-10276MEDIUMCVSS 6.5v5.6.0v5.6.1+51 more2017-10-19
CVE-2017-10276 [MEDIUM] CVE-2017-10276: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result
nvd
CVE-2017-10268MEDIUMCVSS 4.1≥ 5.5.0, ≤ 5.5.57≥ 5.6.0, ≤ 5.6.37+1 more2017-10-19
CVE-2017-10268 [MEDIUM] CVE-2017-10268: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Sup
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Su
nvd
CVE-2017-10286MEDIUMCVSS 4.4≥ 5.6.0, ≤ 5.6.37≥ 5.7.0, ≤ 5.7.192017-10-19
CVE-2017-10286 [MEDIUM] CVE-2017-10286: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supporte
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can
nvd
CVE-2017-10283MEDIUMCVSS 5.3v5.6.0v5.6.1+51 more2017-10-19
CVE-2017-10283 [MEDIUM] CVE-2017-10283: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schem
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnera
nvd
CVE-2017-10378MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.57≥ 5.6.0, ≤ 5.6.37+1 more2017-10-19
CVE-2017-10378 [MEDIUM] CVE-2017-10378: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.11 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi
nvd
CVE-2017-10167MEDIUMCVSS 6.5≤ 5.7.192017-10-19
CVE-2017-10167 [MEDIUM] CVE-2017-10167: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized
nvd
CVE-2017-10279MEDIUMCVSS 4.9≥ 5.6.0, ≤ 5.6.36≥ 5.7.0, ≤ 5.7.182017-10-19
CVE-2017-10279 [MEDIUM] CVE-2017-10279: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can
nvd
CVE-2017-10314MEDIUMCVSS 4.9v5.6.0v5.6.1+51 more2017-10-19
CVE-2017-10314 [MEDIUM] CVE-2017-10314: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can
nvd
CVE-2017-10365LOWCVSS 3.8≥ 5.7.0, ≤ 5.7.182017-10-19
CVE-2017-10365 [LOW] CVE-2017-10365: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supporte
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized updat
nvd
CVE-2017-3645MEDIUMCVSS 4.9≤ 5.7.182017-08-08
CVE-2017-3645 [MEDIUM] CVE-2017-3645: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized a
nvd
CVE-2017-3529MEDIUMCVSS 5.3≤ 5.7.182017-08-08
CVE-2017-3529 [MEDIUM] CVE-2017-3529: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: UDF). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: UDF). Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abilit
nvd
CVE-2017-3648MEDIUMCVSS 4.4≥ 5.5.0, ≤ 5.5.56≥ 5.6.0, ≤ 5.6.36+1 more2017-08-08
CVE-2017-3648 [MEDIUM] CVE-2017-3648: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Suppor
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi
nvd
CVE-2017-3636MEDIUMCVSS 5.3≥ 5.5.0, ≤ 5.5.56≥ 5.6.0, ≤ 5.6.362017-08-08
CVE-2017-3636 [MEDIUM] CVE-2017-3636: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Support
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vuln
nvd
CVE-2017-3635MEDIUMCVSS 5.3≥ 5.5.0, ≤ 5.5.56≥ 5.6.0, ≤ 5.6.36+1 more2017-08-08
CVE-2017-3635 [MEDIUM] CVE-2017-3635: Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Support
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/C). Supported versions that are affected are 6.1.10 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorize
nvd
CVE-2017-3637MEDIUMCVSS 5.3≤ 5.7.182017-08-08
CVE-2017-3637 [MEDIUM] CVE-2017-3637: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: X Plugin). Supported vers
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: X Plugin). Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability t
nvd
CVE-2017-3634MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.36≥ 5.7.0, ≤ 5.7.182017-08-08
CVE-2017-3634 [MEDIUM] CVE-2017-3634: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result i
nvd
CVE-2017-3642MEDIUMCVSS 4.9≤ 5.7.182017-08-08
CVE-2017-3642 [MEDIUM] CVE-2017-3642: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized a
nvd
CVE-2017-3646MEDIUMCVSS 4.9≤ 5.7.162017-08-08
CVE-2017-3646 [MEDIUM] CVE-2017-3646: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: X Plugin). Supported vers
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: X Plugin). Supported versions that are affected are 5.7.16 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to
nvd
CVE-2017-3641MEDIUMCVSS 4.9≥ 5.5.0, ≤ 5.5.56≥ 5.6.0, ≤ 5.6.36+1 more2017-08-08
CVE-2017-3641 [MEDIUM] CVE-2017-3641: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulne
nvd
CVE-2017-3633MEDIUMCVSS 6.5≥ 5.6.0, ≤ 5.6.36≥ 5.7.0, ≤ 5.7.182017-08-08
CVE-2017-3633 [MEDIUM] CVE-2017-3633: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Memcached to compromise MySQL Server. Successful attacks of this vulnerability can result i
nvd