Medium severity6.7NVD Advisory· Published Jan 27, 2017· Updated May 13, 2026
CVE-2017-3312
CVE-2017-3312
Description
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS v3.0 Base Score 6.7 (Confidentiality, Integrity and Availability impacts).
Affected products
4- cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
- Oracle/MySQL Serverv5Range: 5.5.53 and earlier
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.htmlnvdPatchVendor Advisory
- www.debian.org/security/2017/dsa-3767nvdThird Party Advisory
- www.debian.org/security/2017/dsa-3770nvdThird Party Advisory
- www.securityfocus.com/bid/95491nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037640nvdThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2017:2192nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2787nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2017:2886nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:0279nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:0574nvdThird Party Advisory
- security.gentoo.org/glsa/201702-17nvdThird Party Advisory
- security.gentoo.org/glsa/201702-18nvdThird Party Advisory
News mentions
0No linked articles in our index yet.