CVE-2016-3477

8.1HIGH

Key Information:

Vendor: IBM
Status: Powerkvm
Vendor: CVE Published:; 21 July 2016

Summary

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser.

References

http://www.ubuntu.com/usn/USN-3040-1

vendor-advisoryx_refsource_UBUNTU

http://rhn.redhat.com/errata/RHSA-2016-1603.html

vendor-advisoryx_refsource_REDHAT

http://www.oracle.com/technetwork/topics/security/linuxbu...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jul 21, 2016
Vulnerability Reserved
Mar 17, 2016

.