CVE-2016-6664
moderate-risk
Published 2016-12-13
mysqld_safe in Oracle MySQL through 5.5.51, 5.6.x through 5.6.32, and 5.7.x through 5.7.14; MariaDB; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster before 5.5.41-37.0, 5.6.x before 5.6.32-25.17, and 5.7.x before 5.7.14-26.17, when using file-based logging, allows local users with access to the mysql account to gain root privileges via a symlink attack on error logs and possibly other files.
Do I need to act?
!
54.4% chance of exploitation in next 30 days
EPSS score — higher than 46% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.0/10
High
LOCAL
/ HIGH complexity
Affected Products (4)
References (30)
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2130.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2749.html
Mailing List
http://seclists.org/fulldisclosure/2016/Nov/4
Third Party Advisory
http://www.debian.org/security/2017/dsa-3770
Third Party Advisory
http://www.securityfocus.com/archive/1/539695/100/0/threaded
Third Party Advisory
http://www.securityfocus.com/bid/93612
Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:2192
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0279
Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:0574
Third Party Advisory
https://security.gentoo.org/glsa/201702-18
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2130.html
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2749.html
Mailing List
http://seclists.org/fulldisclosure/2016/Nov/4
and 10 more references
46
/ 100
moderate-risk
Severity
18/34 · Moderate
Exploitability
18/34 · Moderate
Exposure
10/34 · Low