Oracle MySQL vulnerabilities
1,328 known vulnerabilities affecting oracle/mysql.
Total CVEs
1,328
CISA KEV
0
Public exploits
50
Exploited in wild
0
Severity breakdown
CRITICAL12HIGH71MEDIUM1064LOW181
Vulnerabilities
Page 42 of 67
CVE-2017-3600MEDIUMCVSS 6.6≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3600 [MEDIUM] CVE-2017-3600: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Suppor
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client mysqldump). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi
nvd
CVE-2017-3460MEDIUMCVSS 4.9≤ 5.7.172017-04-24
CVE-2017-3460 [MEDIUM] CVE-2017-3460: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). S
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Audit Plug-in). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthor
nvd
CVE-2017-3456MEDIUMCVSS 4.9≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3456 [MEDIUM] CVE-2017-3456: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vul
nvd
CVE-2017-3465MEDIUMCVSS 4.3≤ 5.7.172017-04-24
CVE-2017-3465 [MEDIUM] CVE-2017-3465: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in un
nvd
CVE-2017-3454MEDIUMCVSS 5.5≤ 5.7.172017-04-24
CVE-2017-3454 [MEDIUM] CVE-2017-3454: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supporte
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: InnoDB). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ab
nvd
CVE-2017-3457MEDIUMCVSS 4.9≤ 5.7.172017-04-24
CVE-2017-3457 [MEDIUM] CVE-2017-3457: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abili
nvd
CVE-2017-3305MEDIUMCVSS 5.3≥ 5.5.0, ≤ 5.5.55≥ 5.6.0, ≤ 5.6.352017-04-24
CVE-2017-3305 [MEDIUM] CWE-319 CVE-2017-3305: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API). Supported
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API). Supported versions that are affected are 5.5.55 and earlier and 5.6.35 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability
nvd
CVE-2017-3331MEDIUMCVSS 6.5v5.7.11v5.7.12+5 more2017-04-24
CVE-2017-3331 [MEDIUM] CVE-2017-3331: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). The support
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). The supported version that is affected is 5.7.11 to 5.7.17. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability
nvd
CVE-2017-3452MEDIUMCVSS 6.5≤ 5.6.352017-04-24
CVE-2017-3452 [MEDIUM] CVE-2017-3452: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.35 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized
nvd
CVE-2017-3463MEDIUMCVSS 4.9≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3463 [MEDIUM] CVE-2017-3463: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful at
nvd
CVE-2017-3458MEDIUMCVSS 4.9≤ 5.7.172017-04-24
CVE-2017-3458 [MEDIUM] CVE-2017-3458: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized abili
nvd
CVE-2017-3464MEDIUMCVSS 4.3≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3464 [MEDIUM] CVE-2017-3464: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported v
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vuln
nvd
CVE-2017-3455MEDIUMCVSS 5.4≤ 5.7.172017-04-24
CVE-2017-3455 [MEDIUM] CVE-2017-3455: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in un
nvd
CVE-2017-3462MEDIUMCVSS 4.9≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3462 [MEDIUM] CVE-2017-3462: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful at
nvd
CVE-2017-3459MEDIUMCVSS 4.9≤ 5.7.172017-04-24
CVE-2017-3459 [MEDIUM] CVE-2017-3459: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized
nvd
CVE-2017-3453MEDIUMCVSS 6.5≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3453 [MEDIUM] CVE-2017-3453: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Suppo
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi
nvd
CVE-2017-3461MEDIUMCVSS 4.9≥ 5.5.0, ≤ 5.5.54≥ 5.6.0, ≤ 5.6.35+1 more2017-04-24
CVE-2017-3461 [MEDIUM] CVE-2017-3461: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privile
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 5.5.54 and earlier, 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful at
nvd
CVE-2017-3468LOWCVSS 3.1≤ 5.7.172017-04-24
CVE-2017-3468 [LOW] CVE-2017-3468: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encrypt
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that are affected are 5.7.17 and earlier. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unaut
nvd
CVE-2017-3467LOWCVSS 3.7≤ 5.7.172017-04-24
CVE-2017-3467 [LOW] CVE-2017-3467: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API). Supported
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API). Supported versions that are affected are 5.7.17 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read a
nvd
CVE-2017-3302HIGHCVSS 7.5≥ 5.6.0, < 5.6.21≥ 5.7.0, < 5.7.52017-02-12
CVE-2017-3302 [HIGH] CWE-416 CVE-2017-3302: Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through
Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3.
nvd