Denial of Service Vulnerability in phpMyAdmin by Vendor CreaTech
CVE-2017-1000018

7.5HIGH

Key Information:

Vendor: PHPmyadmin
Status: PHPmyadmin
Vendor: CVE Published:; 17 July 2017

Summary

A Denial of Service vulnerability exists in phpMyAdmin versions 4.0, 4.4, and 4.6, where an attacker can exploit it by sending a specially crafted table name in the replication status. This action can lead to a disruption of service, making the application unresponsive and affecting its availability. It is crucial for users to apply security patches and updates to mitigate this risk.

References

http://www.securityfocus.com/bid/95738

vdb-entryx_refsource_BID

https://www.phpmyadmin.net/security/PMASA-2017-7

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 17, 2017
Vulnerability Reserved
Jul 10, 2017