4.3

CVE-2016-3452

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
RedhatEnterprise Linux Version6.0
RedhatEnterprise Linux Version7.0
OracleMysql Version >= 5.5.0 <= 5.5.48
OracleMysql Version >= 5.6.0 <= 5.6.29
OracleMysql Version >= 5.7.0 <= 5.7.10
MariadbMariadb Version >= 5.5.20 < 5.5.49
MariadbMariadb Version >= 10.0.0 < 10.0.25
MariadbMariadb Version >= 10.1.0 < 10.1.14
IbmPowerkvm Version2.1
IbmPowerkvm Version3.1
OracleLinux Version7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.19% 0.883
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.7 2.2 1.4
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1036362
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/91999
Third Party Advisory
VDB Entry