4.4

CVE-2017-3243

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.53 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 4.4 (Availability impacts).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OracleMysql Version >= 5.5.0 <= 5.5.53
MariadbMariadb Version >= 5.5.0 < 5.5.54
MariadbMariadb Version >= 10.0.0 < 10.0.29
MariadbMariadb Version >= 10.1.0 < 10.1.21
DebianDebian Linux Version8.0
RedhatEnterprise Linux Eus Version7.4
RedhatEnterprise Linux Eus Version7.5
RedhatEnterprise Linux Eus Version7.6
RedhatEnterprise Linux Eus Version7.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.34% 0.9
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.4 0.7 3.6
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 3.5 6.8 2.9
AV:N/AC:M/Au:S/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.securitytracker.com/id/1037640
Third Party Advisory
Broken Link
VDB Entry
http://www.debian.org/security/2017/dsa-3770
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2192
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0279
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0574
Third Party Advisory
https://security.gentoo.org/glsa/201702-18
Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html
Patch
Vendor Advisory
https://security.gentoo.org/glsa/201702-17
Third Party Advisory
http://www.debian.org/security/2017/dsa-3767
Third Party Advisory
http://www.securityfocus.com/bid/95538
Third Party Advisory
VDB Entry