VDB

CISA-2017-3589

CISA-2017-3589 PUBLISHED

Reported by oracle · Published April 24, 2017

Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).

Affected Products

VendorProductVersions
Oracle CorporationMySQL Connectors5.1.41 and earlier
Oracle CorporationMySQL Connectors5.1.41 and earlier, *

Timeline

  • Apr 24, 2017 CVE Published
  • Oct 7, 2024 CVE Updated
  • Mar 26, 2026 Distribution Patch
  • Mar 26, 2026 Security Advisory

References

  • 97836 vdb-entryx_refsource_BID
  • 1038287 vdb-entryx_refsource_SECTRACK
  • x_refsource_CONFIRM
  • DSA-3857 vendor-advisoryx_refsource_DEBIAN
Open in Interactive Console →
$ Console Community · 100/wk Open console ›