Local Vulnerability in Oracle MySQL and MariaDB Affecting Multiple Versions
CVE-2016-0650

5.5MEDIUM

Key Information:

Vendor
Oracle
Status
Linux
Vendor
CVE Published:
21 April 2016

Summary

A flaw exists in Oracle MySQL and MariaDB that allows local users to disrupt service availability through specific vectors associated with database replication. This vulnerability affects multiple versions of MySQL and MariaDB, enabling unauthorized local users to potentially impact system performance and data integrity. Users are advised to implement the latest security updates to mitigate the risk.

References

http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://rhn.redhat.com/errata/RHSA-2016-1481.html
vendor-advisoryx_refsource_REDHAT
https://mariadb.com/kb/en/mariadb/mariadb-5548-release-no...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.