Low severity3.3NVD Advisory· Published Apr 24, 2017· Updated Jun 17, 2026
CVE-2017-3589
CVE-2017-3589
Description
Vulnerability in the MySQL Connectors component of Oracle MySQL (subcomponent: Connector/J). Supported versions that are affected are 5.1.41 and earlier. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Connectors executes to compromise MySQL Connectors. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of MySQL Connectors accessible data. CVSS 3.0 Base Score 3.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mysql:mysql-connector-javaMaven | < 5.1.42 | 5.1.42 |
Affected products
6- ghsa-coords4 versionspkg:maven/mysql/mysql-connector-javapkg:rpm/opensuse/mysql-connector-java&distro=openSUSE%20Tumbleweedpkg:rpm/suse/mysql-connector-java&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/mysql-connector-java&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3
< 5.1.42+ 3 more
- (no CPE)range: < 5.1.42
- (no CPE)range: < 8.0.25-2.2
- (no CPE)range: < 5.1.42-5.4.1
- (no CPE)range: < 5.1.42-5.4.1
- Range: 5.1.41 and earlier
Patches
Vulnerability mechanics
References
6- www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.htmlnvdPatchVendor AdvisoryWEB
- www.securityfocus.com/bid/97836nvdThird Party AdvisoryVDB Entry
- github.com/advisories/GHSA-cjcf-wm2p-59h5ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-3589ghsaADVISORY
- www.debian.org/security/2017/dsa-3857nvdWEB
- www.securitytracker.com/id/1038287nvd
News mentions
0No linked articles in our index yet.