4.3

CVE-2016-3452

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.

Data is provided by the National Vulnerability Database (NVD)
RedhatEnterprise Linux Version6.0
RedhatEnterprise Linux Version7.0
OracleMysql Version >= 5.5.0 <= 5.5.48
OracleMysql Version >= 5.6.0 <= 5.6.29
OracleMysql Version >= 5.7.0 <= 5.7.10
MariadbMariadb Version >= 5.5.20 < 5.5.49
MariadbMariadb Version >= 10.0.0 < 10.0.25
MariadbMariadb Version >= 10.1.0 < 10.1.14
IbmPowerkvm Version2.1
IbmPowerkvm Version3.1
OracleLinux Version7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 4.19% 0.883
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 3.7 2.2 1.4
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:P/I:N/A:N
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1036362
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/91999
Third Party Advisory
VDB Entry