suse · CVE-2017-10379

Quick triage

Priority: medium Published: 2021-05-30 13:58:14 UTC Updated: 2026-04-17 16:05:37 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-10379 severity moderate: SUSE including 116 source package names (galera-3-wsrep-provider-25.3.23-8.3, liblz4-1-1.8.0-3.5.2, …), 282 product×package rows across 44 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 6, … (44 product lines)): Fixed 205, Known Not Affected 77.

Description:

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.57 and earlier, 5.6.37 and earlier and 5.7.19 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS 3.0 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).

cvelogic Threat Intelligence