VDB
CVE-2016-5617
CVE-2016-5617
PUBLISHED
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-6664. Reason: This candidate is a reservation duplicate of CVE-2016-6664. Notes: All CVE users should reference CVE-2016-6664 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
EPSS 0.26% · 66.7th percentile
Risk Scores
EPSS Score
0.26%
66.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | mariadb-10.0 | 10.0.20-0ubuntu0.15.04.1, 10.0.22-0ubuntu1, 10.0.23-1 |
| Ubuntu:14.04:LTS | mysql-5.5 | 0, 5.5.32-0ubuntu7, 5.5.34-0ubuntu1 |
Exploit Intelligence
- MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation - Linux local Exploit (variot)
- MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation - Linux local Exploit (variot)
- MySQL / MariaDB / PerconaDB 5.5.x/5.6.x/5.7.x - 'root' System User Privilege Escalation - Linux local Exploit (variot)
- MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability (0day-today)
- MySQL / MariaDB / PerconaDB - 'root' Privilege Escalation Vulnerability (0day-today)
- MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition (0day-today)
- MySQL / MariaDB / PerconaDB - 'mysql' System User Privilege Escalation / Race Condition (0day-today)
Timeline
- Sep 12, 2016 PoC Published
- Oct 19, 2016 CVE Published
- Nov 2, 2016 PoC Published
- Feb 8, 2024 EPSS Score
- Feb 22, 2024 EPSS Score
- Mar 7, 2024 EPSS Score
- Mar 20, 2024 EPSS Score
- Apr 3, 2024 EPSS Score
- Apr 17, 2024 EPSS Score
- May 1, 2024 EPSS Score
- May 15, 2024 EPSS Score
- May 29, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-5617 third-party-advisory
- http://legalhackers.com/advisories/MySQL-Maria-Percona-RootPrivEsc-CVE-2016-6664-5617-Exploit.html third-party-advisory
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html#AppendixMSQL third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-5617 third-party-advisory