suse · CVE-2018-3286

Quick triage

Priority: medium Published: 2021-05-30 14:08:06 UTC Updated: 2023-01-19 02:06:46 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-3286 severity moderate: SUSE including 14 source package names (libmysql55client18, libmysql55client18-32bit, …), 20 product×package rows across 6 product lines (SLES for SAP Applications 11 SP3, SUSE Linux Enterprise Server 11 SP1 for Teradata, … (6 product lines)): Known Not Affected 20.

Description:

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.0 Base Score 4.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

cvelogic Threat Intelligence