suse · CVE-2018-3283

Quick triage

Priority: medium Published: 2021-05-30 14:08:05 UTC Updated: 2023-01-19 02:06:48 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-3283 severity moderate: SUSE including 14 source package names (libmysql55client18, libmysql55client18-32bit, …), 20 product×package rows across 6 product lines (SLES for SAP Applications 11 SP3, SUSE Linux Enterprise Server 11 SP1 for Teradata, … (6 product lines)): Known Not Affected 20.

Description:

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Logging). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H).

cvelogic Threat Intelligence