CVE-2016-5612

moderate-risk
Published 2016-10-25

Unspecified vulnerability in Oracle MySQL 5.5.50 and earlier, 5.6.31 and earlier, and 5.7.13 and earlier allows remote authenticated users to affect availability via vectors related to DML.

Do I need to act?

-
0.71% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10 Medium
NETWORK / LOW complexity

Affected Products (17)

Affected Vendors

Redhat Mariadb Oracle

References (18)

Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-1601.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2130.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2131.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2595.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2927.html
Patch http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Third Party Advisory http://www.securityfocus.com/bid/93630
Broken Link http://www.securitytracker.com/id/1037050
Third Party Advisory https://security.gentoo.org/glsa/201701-01
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-1601.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2130.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2131.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2595.html
Third Party Advisory http://rhn.redhat.com/errata/RHSA-2016-2927.html
Patch http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Third Party Advisory http://www.securityfocus.com/bid/93630
Broken Link http://www.securitytracker.com/id/1037050
Third Party Advisory https://security.gentoo.org/glsa/201701-01
45
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 2/34 · Minimal
Exposure 19/34 · Moderate